Plugin Title Instance Level SSH Only
Cloud GOOGLE
Category Compute
Description Ensures that instances are not configured to allow project-wide SSH keys
More Info To support the principle of least privilege and prevent potential privilege escalation it is recommended that instances are not give access to project-wide SSH keys through instance metadata.
AWS Link https://cloud.google.com/compute/docs/instances/adding-removing-ssh-keys
Recommended Action Ensure project-wide SSH keys are blocked for all instances.


Detailed Remediation Steps

Want to scan for this risk automatically?

Get Started Now