Plugin Title Instance Level SSH Only
Category Compute
Description Ensures that instances are not configured to allow project-wide SSH keys
More Info To support the principle of least privilege and prevent potential privilege escalation it is recommended that instances are not give access to project-wide SSH keys through instance metadata.
AWS Link
Recommended Action Ensure project-wide SSH keys are blocked for all instances.

Detailed Remediation Steps

Want to scan for this risk automatically?

Get Started Now