Ensure Cassandra Thrift (TCP:9160) is not exposed to entire internet
HIGH
Description
Cassandra Thrift (TCP:9160) is exposed to entire internet. Exposed ports may allow attackers to access the application listening on that port.
Remediation
In AWS Console -
Sign in the AWS Console and go to the Amazon VPC console.
In the navigation pane, select Security Groups.
For each security group, perform the following actions: a) Select the security group. b) Select the Inbound Rules. c) Identify the rules to be removed. d) Remove the required rules.