Leaving remote access accessible from the internet increases the attack surface
- GG_ID: GG_IAC_0009
- Severity: CRITICAL
- Complexity: LOW
- Categories: NETWORK
- Providers: Azure
- Potential data exposure: True
- Visible in logs: True
- User interaction required: False
- Privileges required: True
Description#
SSH or RDP ports are open to the internet.
Impact#
Anyone can potentially access the machine. Vulnerabilities or brute-force attacks can be used to gain access to the machine.
Remediation guidelines#
Consider using a bastion to protect the machine.