AWS

How to secure instances in AWS?

Difficulty: unrated

Source: bregman-arie/devops-exercises by Arie Bregman

Answer

  • Instance IAM roles should have minimal permissions needed. You don't want an instance-level incident to become an account-level incident
    • Use "AWS System Manager Session Manager" for SSH
    • Using latest OS images with your instances