LinuxQuestions.org - How or steps to go about updates Hardening RHEL AMI?

- Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)

- - How or steps to go about updates Hardening RHEL AMI? (https://www.linuxquestions.org/questions/linux-security-4/how-or-steps-to-go-about-updates-hardening-rhel-ami-4175589495/)

adams kpewa

09-15-2016 10:18 AM

How or steps to go about updates Hardening RHEL AMI?

Hello

So say you have a Nessus Scan results and your boss asked you that based off the vulnerability scans, take into account any vulnerabilities within the COTs and make appropriate updates to the Amazon Machine Image (AMI)

HOW CAN YOU GO ABOUT THIS AND WHAT ARE A FEW QUESTIONS THAT COMES TO MIND WHOSE ANSWERS ARE A STEP FORWARD TO DOING THE HARDENING TAST ON THE IMAGE.
Thanks

Habitual

09-15-2016 11:59 AM

Scan from an IP not in the Security Group and see what the boss says about vulnerability scans.
Most/All ports/services are closed to the world. Ports must explicitly opened for any vulnerabilities to be exploited.

How do you tighten up an RHEL server that's not an AMI?

See also https://docs.aws.amazon.com/AWSEC2/l...ty-group-rules
https://docs.aws.amazon.com/AWSEC2/l...ecurity-groups
and others there.

Let us know.

Lose the caps, thanks.

All times are GMT -5. The time now is 09:01 PM.