To access material, start machines and answer questions login.
In this room, you will explore a common misconfiguration involving Security Groups. Let's dive in.
Here is a common scenario: a developer builds a web application on and needs a web server, access for management, and a MySQL database. As it happens, most of the time, the eager cloud admin creates a single security group, opening the needed ports to the entire internet. The web app works, so nobody revisited the setup.
Learning Objectives
- Identify overly permissive rules in SG
- Remove and replace SG rules with scoped, least-privilege alternatives
- Use SG2SG references for inter-tier communication
- Understand a multi-tier SG strategy to separate public/private access
Prerequisites
- Being able to set up your environment (First Steps Into room)
- Basic commands ( Fundamentals room)
- Have a basic understanding of the networking service (Introduction to Cloud Networking room)
Let us prevent an apocalypse.
Ready to learn Cyber Security?
The The Wide-Open Security Group room is only available for Premium or Max subscribers. Signup now to access more than 500 free rooms and learn cyber security through a fun, interactive learning environment.
Already have an account? Log in
