Skip to main content

Security Group is Created From EC2 Launch Wizard

Overview

Checks if security group name is launch-wizard. Security Groups Created on the AWS Console using the EC2 wizard may allow port 22 from 0.0.0.0/0.

Vendor

AWS

Cloud Service

EC2

References

https://docs.aws.amazon.com/eks/latest/userguide/sec-group-reqs.html, https://avishayil.medium.com/you-shouldnt-use-the-ec2-launch-wizard-321543a962ad#:~:text=Despite%20the%20warning%20rectangle%2C%20most%20of%20the%20time%20you%20would%20press%20%E2%80%9CNext%E2%80%9D%20because%20why%20not%2C%20and%20that%20will%20create%20a%20%E2%80%9Claunch%2Dwizard%2Dx%E2%80%9D%20security%20group%20with%20an%20ingress%20rule%20that%20allows%20ingress%20access%20from%200.0.0.0/0%20on%20the%20access%20port%20by%20default%20(RDP%20/%20SSH).

Severity

3

Item Types

AWS::EC2::SecurityGroup

Overview
Vendor
Cloud Service
References
Severity
Item Types