Linux EC2 Instance Security Consideration

security linux amazon-ec2

Solution 1:

For me that would be:

  • keep up to date with patches on your distribution
  • run only the services needed on the interfaces needed (netstat -l -n -p will show what process is listening on what port on which interface) eg run mysql only on localhost
  • Secure remote login
    • no root access
    • ssh keys for login only
    • sudo to escalate privileges
    • intrusion detection (rkhunter or tripwire)
  • maybe suphp but I have no experiance with that
  • reliable, offsite backup with history (dirvish for me)
  • configure EC2 Portforwarding only for the services needed

Solution 2:

Ensure that your protect your private keys and you should use the Security Group feature in AWS to ensure that your ports are secure (eg, allow SSH and FTP from your home or office only while allowing HTTP/S from all IPs).

Related

Windows 2003 DC to Windows 2008 R2 DC with same name and same IP
Apache Dynamic Virtual Host with SSL [duplicate]
Using iptables to redirect incoming requests from port 2525 to port 25?
Exim: how to deliver locally and send a copy to another server
Two NICs, one server
Why does my SSH passphrase work with `plink` and not `ssh`?
Is it possible to have regular-expression CNAME record in DNS?
How to have a certificate which works with both example.com and subdomain.example.com in IIS?
Windows Server 2012 R2 Essentials unable to install using .com, etc. domain suffix
Understanding: cloud-server, cloud-hosting, cloud-computing, the cloud [closed]
SSH - Add public keys to server after disabling PasswordAuthentication
Missing Certificate template From certificate to issue