Azure > Network Security Groups >

Open HTTP

HIGH

Source

CloudSploit

open-http

management console

Open HTTP

Determine if TCP port 80 for HTTP is open to the public

Network security groups should be periodically evaluated for port misconfigurations. Where certain ports and protocols may be exposed to the Internet, they should be evaluated for necessity and restricted wherever they are not explicitly required and narrowly configured.

Recommended Actions

Restrict TCP port 80 to known IP addresses.

Links

https://learn.microsoft.com/en-us/azure/virtual-network/manage-network-security-group

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.