Sometimes a port needs to be kept open for the proper functioning of your business. If this is the case, then you should be taking steps to ensure the port is as secure as possible.
- All services (such as OpenSSH) should be updated to the latest available version
- You should limit access to the port by the use of a VPN, or by the use of SSH Keys or
equally secure authentication method - These authentication methods should be governed by strict policies such as keys being
regularly rotated, only released to individuals with the correct permissions, and using MFA to
provide an extra layer of security
A KYND scan will not be able to tell if these measures have been put in place so you will need to discuss these with the KYND partner who shared the report with you.