Questions tagged with Security
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Enabling Password Based Authentication on Existing Transfer Family 'Service managed' SFTP Serverlg...
I have an existing AWS transfer family SFTP server that has been configured with the 'Service Managed' identity provider which has only public key authentication for its users. Can I please know how I...
2
answers
0
votes
626
views
asked a month agolg...
Hi,
I am pretty new to AWS. I have full admin access to the console.
We have 4 ec2 instances (DB, Proxy, UI and API). These servers are responsible for the website we have hosted on them.
1) How do...
1
answers
0
votes
381
views
asked 2 months agolg...
One of our client is trying to reach our application but they are not able to reach with 403 error.
We have enabled WAF for this application with a custom rule looking for X-Forwarded-For header...
2
answers
0
votes
367
views
asked 2 months agolg...
Implications of TLS 1.2 as Minimum Protocol for AWS API Endpoints: Does it impact on ELB and S3 etc.lg...
I recently came across a notification stating, "TLS 1.2 to become the minimum TLS protocol level for all AWS API endpoints." This change prompts the question: does it affect all services on AWS?...
2
answers
0
votes
479
views
asked 2 months agolg...
What should be my security group rule when Internet-facing ALB is introduced as a target to private NLB?
This documentation...
2
answers
0
votes
523
views
asked 2 months agolg...
Hello,
We want to let students create their own personal (private) CodeCommit Repos based on IdentityPool, we find it possible to create CodeCommit repos programmatically...
1
answers
0
votes
292
views
asked 2 months agolg...
Recently started building a SPA. I'm using the [official AWS stand-alone Amplify javascript library for Auth](https://github.com/aws-amplify/amplify-js?tab=readme-ov-file#features). After deploying my...
1
answers
0
votes
525
views
asked 2 months agolg...
Hello,
Which is the preferred way to connect from a VPC Lambda to an AWS Service ?
When I tried to create a VPC Endpoint for AWS Service Translate, I've noticed that all AWS Services are available...
2
answers
0
votes
422
views
asked 2 months agolg...
In Amazon Grafana its possible to add HTML panels but its impossible to use external links. I've even tried using links to S3 bucket in AWS.
I need to embed a widget or use some external js library...
2
answers
0
votes
404
views
asked 2 months agolg...
I was wondering how I can/should 'protect' my API endpoint (which triggers a Lambda function.) As the endpoint is publicly visible, it seems that someone could spam it with requests.
From what I've...
2
answers
0
votes
267
views
asked 2 months agolg...
I have a website that is behind ALB with WAF integration. Our vulnerability scan showed the following:
Website Does Not Implement HSTS Best Practices
**Recommendation:**
Implement HTTP Strict...
2
answers
0
votes
678
views
asked 2 months agolg...
I have done a security vulnerability scan against my hosted site behind ALB with WAF integration. The scan reported the following:
Content Security Policy (CSP)...
1
answers
0
votes
621
views
asked 2 months agolg...