Questions tagged with Security

The security pillar focuses on protecting information and systems. Key topics include confidentiality and integrity of data, managing user permissions, and establishing controls to detect security events.

Content language: English

Select up to 5 tags to filter
Sort by most recent

Browse through the questions and answers listed below or filter and sort to narrow down your results.

When using 3rd party CA and would like to reimport certs to Certificate Manager with a higher RSA Key Size without changing the Cert ANR's so ELB's etc are not impacted. Today, AWS restricts users...
1
answers
0
votes
306
views
BrianB
asked 2 months ago
I'm trying to integrate AWS WAF CAPTCHA into my website which also uses Content-Security-Policy header. But CAPTCHA JS-library tries to load SVG-images using data:-URLs and I get the following...
1
answers
0
votes
391
views
asked 2 months ago
AWS WAF uses Machile Learning or Artificial Inteligence to create managed rules?
2
answers
0
votes
635
views
Leticia
asked 2 months ago
According to the [latest release](https://nodejs.org/en/blog/vulnerability/july-2024-security-releases) from the NodeJS team's website, v20.15.1 contains the latest security patches for the v20.x...
1
answers
0
votes
668
views
ABJISC
asked 2 months ago
I received an alert last week from Guardduty saying that "An EC2 instance has an unprotected port which is being probed by a known malicious host." We have double and triple checked security groups-...
3
answers
0
votes
541
views
Anthony
asked 2 months ago
We are using AWS API Gateway for hosting our HTTP APIs which are supported by ECS Farget backend . 1. In API GW we receive externa token in "Authorization" header from caller 2. Validate that token...
1
answers
0
votes
584
views
VJ
asked 2 months ago
Hi, I'm encountering a strange issue with my API Gateway and my CloudFront app. When my frontend tries to call my API Gateway (VPC link behind an internal NLB), I get the following...
1
answers
0
votes
400
views
Alex
asked 2 months ago
Hi, The question same as in the title. Can/does "aws SSM patch manager" patch instances with state "Stopped"? Im curious, because it seems that sometimes, even thought the patch manager is being ran...
2
answers
0
votes
295
views
asked 2 months ago
I have an S3 bucket in the region us-east-1. Now I managed to create backup on a regular basis and it works fine. The next thing I wanted to do is to copy it to other regions: First, I wanted to...
1
answers
0
votes
699
views
asked 2 months ago
is the sync analyzedocuemnt api from** python SDK **encrypted by TLS by default? this will be enough for HIPAA compliance as far as encryption in transmit is concerned? if not whats the best/easiest...
1
answers
0
votes
239
views
Navi
asked 2 months ago
We have a website hosted on EC2, and we use SES for sending emails. Additionally, we utilize Cloudflare as our CDN and DNS. Recently, we encountered an issue where emails were being sent randomly from...
1
answers
0
votes
474
views
asked 2 months ago
Hi, In our current solution users connect with a VPN client and from there they have access to the entire VPC. We have a new requirement which is that within that same VPC not all users have access...
2
answers
0
votes
468
views
Alfonso
asked 2 months ago