Skip to main content

Leaving remote access accessible from the internet increases the attack surface

  • GG_ID: GG_IAC_0009
  • Severity: CRITICAL
  • Complexity: LOW
  • Categories: NETWORK
  • Providers: Azure
  • Potential data exposure: True
  • Visible in logs: True
  • User interaction required: False
  • Privileges required: True


SSH or RDP ports are open to the internet.


Anyone can potentially access the machine. Vulnerabilities or brute-force attacks can be used to gain access to the machine.

Remediation guidelines#

Consider using a bastion to protect the machine.

External documentation#