In Azure using IaaS workloads, the new Just-In-Time VM Access helps to mitigate a brute force attack by limiting the time that a port is kept open. Very easy to set up and can control SSH or RDP ports as applicable. This feature in preview now and should be GA soon. Enabling the option will help to harden the security. This would also help to meet the security score by meeting Azure CIS Foundation requirement - "JIT Network Access is 'On'".
https://azure.microsoft.com/en-us/blog/reduce-your-exposure-to-brute-force-attacks-from-the-virtual-machine-blade/
https://azure.microsoft.com/en-us/blog/reduce-your-exposure-to-brute-force-attacks-from-the-virtual-machine-blade/
Comments
Post a Comment