Security group allows SSH / RDP access from the internet

Network misconfigurations

Security group allows SSH / RDP access from the internet

Platform(s)

Compliance Frameworks

AliCloud CIS
Brazilian General Data Protection (LGPD)
CCPA
cis_8
CPRA
Data Security Posture Management (DSPM) Best Practices
GDPR
HITRUST
iso_27001_2022
iso_27002_2022
Mitre ATT&CK
mpa
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
PDPA
UK Cyber Essentials

Description

A security group controls and limits the network access to your VPC or resource. SSH (port 22) and RDP (port 3389) allow remote connection and control over a resource. Therefore, it is recommended not to allow access from the internet to these ports, and limit them using security groups. By default, AliCloud enables SSH access in order to let you connect to your resource. We have found that the security group {AliCloudEcsSecurityGroup} enables remote connection access through the internet.

Security group allows SSH / RDP access from the internet

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS