EC2: DescribeSecurityGroups - 'Review security groups'

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

A security group acts as a virtual firewall that controls the traffic for one or more instances. When you launch an instance, you associate one or more security groups with the instance. You add rules to each security group that allow traffic to or from its associated instances.

NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.

Solution

Review the list of security groups and their descriptions. If any are incorrect or undocumented they should be investigated.

See Also

https://d1.awsstatic.com/whitepapers/Security/AWS_Security_Best_Practices.pdf

Item Details

Category: ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|AC-4, 800-53|SC-2, 800-53|SC-3, 800-53|SC-7

Plugin: amazon_aws

Control ID: 92accbdd9daaa3e8efe5d5a54e3fbe4282f40d174ac7d64d63fb8f0cd7755351