Answer the question
In order to leave comments, you need to log in
How to protect against AWS hack?
Good afternoon. It is necessary to make the architecture on AWS. But after reading articles hacking through AWS keys. And then installing a lot of servers for mining, it's not a lot of shivers. The guys wrote about bills of 10-20 thousand dollars in two days. Can you advise a manual-link for protection for this type of hacking
Answer the question
In order to leave comments, you need to log in
The main reason for such hacks is the incorrect setting of permissions for keys and the publication of these very keys in open sources, such as github. Therefore:
1) Use roles instead of keys whenever possible
2) Always limit any keys to only those functions that are really needed
3) Add files to .gitignore that can contain keys
4) Store SSH keys in an encrypted container (VeraCrypt, for example)
Like -that's right. In principle, there is nothing complicated about this, the main thing is to understand what keys are and how they are used.
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question