Skip to content

Access Control: Open SSH Server

Identifier: ssh_exposed

Scanner(s) Support

GraphQL Scanner REST Scanner WebApp Scanner ASM Scanner

Description

SSH servers exposed to the public internet should be properly secured with strong authentication methods and restricted network access to prevent unauthorized access.

How we test: We scan for exposed SSH services on public IP addresses and analyze their configuration. We check if SSH ports are accessible from the internet and verify that proper security measures such as strong authentication and access restrictions are in place.

Configuration

Example

Example configuration:

---
security_tests:
  ssh_exposed:
    skip: false

Reference

skip

Type : boolean

Skip the test if true.