SCS-C02 Infrastructure Security • Set 10
SCS-C02 Infrastructure Security Practice Test 10 — 15 questions with explanations. Free, no signup.
Refer to the exhibit. A security engineer is reviewing this CloudFormation template. What security risk is present in this configuration?
Refer to the exhibit.
Exhibit: (CloudFormation snippet)
Resources:
MyEC2Instance:
Type: AWS::EC2::Instance
Properties:
InstanceType: t2.micro
ImageId: ami-0abcdef1234567890
SecurityGroups:
- !Ref MySecurityGroup
MySecurityGroup:
Type: AWS::EC2::SecurityGroup
Properties:
GroupDescription: Allow HTTP and SSH
SecurityGroupIngress:
- IpProtocol: tcp
FromPort: 80
ToPort: 80
CidrIp: 0.0.0.0/0
- IpProtocol: tcp
FromPort: 22
ToPort: 22
CidrIp: 10.0.0.0/8