Firewall Weakness in Microsoft Azure’s Backplane Health Check I decided to do this write up because Microsoft doesn’t really give the full story on their website when describing why ports 65503-65534 need to be open to everything on the internet. Azure customers should be aware of this risk when deploying onto the Azure Cloud. TLDR: Cloud providers need a way to connect to your instances in order to do health check monitoring for Service Level Agreements (SLA). Read more ...

I plan to post my personal security research on this blog. I am hosting this on AWS, S3, and CloudFront. This is quite a change after being used to running a personal server in a colocation facility for almost 20 years. It is quite nice though–I don’t have to manage security updates as they do that for you. If all goes well I hope to share my findings here on a semi-regular basis. Read more ...