Questions tagged with Security
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
System policy says lock should drop in 4 hours, but it has not unlocked after a week. Unfortunately my backup admin account was also locked around the same time. I also reset password to no avail,...
1
answers
0
votes
164
views
asked 12 days agolg...
Currently we are facing a DDoS attack on our application every 3-4 days. We have configured a WAF rate limiting rule that seems to work correctly against our load testing tool but doesnt seem to block...
1
answers
0
votes
120
views
asked 13 days agolg...
Hi, I have a private link in API Gateway created in my VPC A which is invoked only by the EC2s in the VPC A (restricted by resource policy). Now I want to add my gamelift servers as well the...
1
answers
0
votes
257
views
asked 13 days agolg...
I have a setup in the Mumbai region, with AS and LB. Earlier eveyrthing was working fine. Recently we have noticed a domain name that is pointed to AWS IP is accessing the exact content our...
1
answers
0
votes
89
views
asked 13 days agolg...
Hello.
I want to enable data encryption at rest for EC2, EFS and S3, but I have some doubts, and I hope your experiences can help me with that.
1. Encryption at rest for EC2, I understand is...
2
answers
0
votes
419
views
asked 13 days agolg...
Context:
I have a setup with an existing VPC with sensitive workloads, in terms of security.
I would like to setup DataSync (ideally on AWS EC2) so that a task can synchronise an MS Azure Blob Storage...
2
answers
0
votes
105
views
asked 13 days agolg...
It is showing, "You do not have sufficient permission on your user to administer CodeWhisperer. Ask your account administrator to provide you with the required codewhisperer:ListProfiles permission to...
2
answers
0
votes
116
views
asked 14 days agolg...
Hi,
I have API endpoints for writing the score of players after each game from the server. So my worry is, how can I make sure only the server is authorized to invoke the api? Is a resource policy...
1
answers
0
votes
123
views
asked 15 days agolg...
I'm setting up an infrastructure that uses AWS Global Accelerator to provide static IPs for my Application Load Balancer (ALB), which handles URL redirections. I aim to follow the principle of least...
2
answers
0
votes
441
views
asked 16 days agolg...
We have 2 identical prod environments in AWS and the end-user send the exact same payload in those environments. However, one works fine, the other is blocked by **AWS Managed WAF Ruleset-Size...
1
answers
0
votes
150
views
asked 17 days agolg...
Hello, what is the safest way for an application running outside of AWS to consume an object stored in an S3 bucket via get? Could you give examples of the best way to configure it.
I was reading...
1
answers
0
votes
171
views
asked 19 days agolg...
There's an endpoint blocked by AWS WAF. Let's say /api/services. In the logs, it's evident that it's being blocked due to the "size body" in the AWS Managed RuleSet. I've edited SizeRestrictions_BODY...
1
answers
0
votes
168
views
asked 20 days agolg...