Plugin Title | Open Elasticsearch |
Cloud | AWS |
Category | EC2 |
Description | Determine if TCP port 9200 for Elasticsearch is open to the public |
More Info | While some ports such as HTTP and HTTPS are required to be open to the public to function properly, more sensitive services such as Elasticsearch should be restricted to known IP addresses. |
AWS Link | http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/authorizing-access-to-an-instance.html |
Recommended Action | Restrict TCP port 9200 to known IP addresses |