Learn Cloud Security
Page 3 of 13
How to change the password of an IAM User in AWS
Changing passwords periodically is considered to be a security best practice. This article provides a walkthrough of how you can change password for an IAM user in AWS.
How to change the password of an IAM User using AWS CLI
Changing passwords periodically is considered to be a security best practice. This article provides a step by step guide to change password for an IAM user using AWS CLI.
How to enable MFA Delete on S3 bucket
We will go through the steps to enable MFA so that bucket deletion requires an additional layer of security in the form of multi factor authentication.
How to enforce SSL/TLS for S3 requests using AWS
We will go through the steps to enforce SSL/TLS so that bucket policy prevents the contents of the bucket from being served over plaintext HTTP.
How to enforce SSL/TLS for S3 requests using AWS CLI
We will go through the steps to enforce SSL/TLS so that bucket policy prevents the contents of the bucket from being served over plaintext HTTP.
How to Force Delete Kubernetes Namespaces
Quick post that shows with examples, how to delete a Kubernetes namespace that is forever stuck on 'Terminating' stage.
How to conduct assessment with aws-foundations-cis-baseline tool
This post covers the scan report assessment and interpret the results.
How to set up aws-foundations-cis-baseline tool for conducting CIS assessment
This post covers an introduction and instructions to set up the aws-foundations-cis-baseline tool for learning.
How to enable DNSSEC Signing in AWS Route53
Enabling DNSSEC signing increases trust between the user and the target AWS account ensuring that the integrity of the DNS record has not been tampered with and users are receiving information from the correct source. This article provides a step by step guide to enable DNSSEC signing in AWS Route53.
How to enable DNSSEC Signing in Route53 using AWS CLI
Enabling DNSSEC signing increases trust between the user and the target AWS account ensuring that the integrity of the DNS record has not been tampered with and users are receiving information from the correct source. This article provides a step by step guide to enable DNSSEC signing in Route53 using AWS CLI.
How to set up GCP CIS 1.2.0 Benchmark Inspec Profile tool for conducting CIS assessment
This post covers an introduction and instructions to set up the Inspec tool for learning.
Log4j (CVE-2021-44228): Detection, Exploitation and Mitigation
Last week a vulnerability affecting the most common logging packages in Java, Log4j, was made public, complete with exploit code. The vulnerability is rated with a critical severity rating of 10. Successful exploitation allows for a very uncomplicated remote command execution without requiring any authentication over the Internet resulting in a complete compromise of data and system confidentiality, integrity and availability. This blogpost explains the detection methods, exploitation techniques and mitigation instructions of the vulnerability.