Questions tagged with Security
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hi AWS, we are utilizing AWS EC2 Windows server to do deployments for our .NET applications using IIS server. The gaps I figured out from InfoSec perspective are:
1. Everyone is logging into the...
2
answers
0
votes
181
views
asked 2 months agolg...
Good morning,
I have a question about the possibility of reducing the number of security groups that can be created in Service Quotas.
I went to Service Quotas and found the option Amazon Virtual...
2
answers
0
votes
260
views
asked 2 months agolg...
I tried to find problems in the AWS environment through AWS config.
The config pack I used is operational-best-practices-for-cis.
Many other rules passed as compliant, but one...
1
answers
0
votes
170
views
asked 2 months agolg...
I don't understand where or how to find this or if it even apply to me "gateway or firewall domain allow-list for AWS access portal." This was sent to me in an email. Please assist with a clear answer...
1
answers
0
votes
823
views
asked 2 months agolg...
AWS Secrets Managerlg...
Is it possible to disable the **'show password'** checkbox in AWS Secrets Manager so that secret passwords can't be inadvertently unmasked while they're being created?
Can the same thing be done for...
1
answers
0
votes
177
views
asked 2 months agolg...
AWS and IP spoofinglg...
Hey everyone, I use Cloudflare as my WAF, and host my server on AWS and I was wondering, and I want to only whitelist IPs relating to Cloudflare, but I have a problem... how does AWS handle IP...
3
answers
0
votes
288
views
asked 2 months agolg...
All,
How can I disable the upload of a file from AWS Workspace to any internet email such as Gmail, Drive, Dropbox, or any external web?
I need to allow downloads from the internet to AWS Workspace...
4
answers
0
votes
205
views
asked 2 months agolg...
We currently use EC2 full access, S3 full access, & elastic load balancing full access to get terraform up and running. These permissions are turned on and off after every terraform build. This is a...
3
answers
0
votes
194
views
asked 2 months agolg...
```
Denial of Service Vulnerability in DNS servers (KeyTrap+ NSEC3)
Indian - Computer Emergency Response Team (cert-in.org.in)
Severity Rating: High
Overview
Two vulnerabilities have been reported in...
1
answers
0
votes
144
views
asked 2 months agolg...
Good morning,
We have just received the below from AWS regarding one of our Amazon Linux-based webservers. Upon connecting to the host we can't find and evidence of GET command to the Netherlands...
1
answers
0
votes
484
views
asked 2 months agolg...
I am working on a mobile game where the user logs in within the app itself on my own UI. I want to lock down my API Gateway requests to only authenticated users within my Cognito user pool.
1. In...
3
answers
0
votes
171
views
asked 2 months agolg...
For a recent proof of concept I was looking into a way to integrate AppSync, ALB and Cognito and I was wondering if what I did was correct or can be improved as I wasn't able to find a solution "off...
0
answers
0
votes
192
views
asked 2 months agolg...