Meteora WebJun 7

๐Ÿšจ NEWS: EC2 su AWS: instance type, AMI, security group e key pair โ€” Guida operativa

Ecco i punti chiave in breve:
๐Ÿ’ก Hai mai lanciato un'istanza EC2, convinto di aver scelto il tipo giusto, e un mese dopo ti sei ritrovato con una fattura del 40% piรน alta del previsto? Oppure hai esposto un server su internet...

๐Ÿš€ LINK: https://meteoraweb.com/analisi-dei-dati-e-metriche/ec2-su-aws-instance-type-ami-security-group-e-key-pair-guida-operativa

#aWSEC2 #instanceType #aMI #securityGroup #keyPair

 DevelopersIOJun 24, 2024

์ธ์Šคํ„ด์Šค์— ์ €์žฅ๋œ ํผ๋ธ”๋ฆญ ํ‚ค๊ฐ€ ๋ณ€๊ฒฝ๋˜์„œ ์ ‘์†์ด ์•ˆ๋  ๋•Œ EC2 Instance Connect API๋ฅผ ์‚ฌ์šฉํ•œ ๋Œ€์‘๋ฒ•
https://dev.classmethod.jp/articles/lim-ec2-keypair-publickey/

#dev_classmethod #ํ•œ๊ตญ์–ด๋ธ”๋กœ๊ทธ #EC2_Instance_Connect #keypair #AWS

์ธ์Šคํ„ด์Šค์— ์ €์žฅ๋œ ํผ๋ธ”๋ฆญ ํ‚ค๊ฐ€ ๋ณ€๊ฒฝ๋˜์„œ ์ ‘์†์ด ์•ˆ๋  ๋•Œ EC2 Instance Connect API๋ฅผ ์‚ฌ์šฉํ•œ ๋Œ€์‘๋ฒ• | DevelopersIO

์•ˆ๋…•ํ•˜์„ธ์š”. ์ž„์ฑ„์ •์ž…๋‹ˆ๋‹ค. ์ด๋ฒˆ ๋ธ”๋กœ๊ทธ์—์„œ๋Š” EC2 Instance Connect API๋ฅผ ์‚ฌ์šฉํ•ด์„œ SSH ์ ‘์†ํ•ด๋ณด๋Š” ๋ฐฉ๋ฒ•์„ ์ •๋ฆฌํ–ˆ์Šต๋‹ˆ๋‹ค. ์•„๋ž˜ ๋ธ”๋กœ๊ทธ์—์„œ ํ‚คํŽ˜์–ด๋ฅผ ํ†ตํ•ด SSH๋กœ ์ ‘์†ํ•  ๋•Œ์˜ ๋™์ž‘ ๋ฐฉ๋ฒ•์— ๋Œ€ํ•ด ์ •๋ฆฌ๋ฅผ ํ–ˆ์—ˆ๋Š”๋ฐ, ์ด ๋•Œ ์ธ์Šคํ„ด์Šค ์•ˆ์— ์žˆ๋Š” ํผ๋ธ”๋ฆญ ํ‚ค๊ฐ€ ๋ณ€๊ฒฝ๋˜์—ˆ์„ ๋•Œ ์–ด๋–ป๊ฒŒ ๋˜๋Š”์ง€๋„ ๊ฐ™์ด ํ…Œ์ŠคํŠธํ•ด๋ดค์Šต๋‹ˆ๋‹ค. ๋ณ€๊ฒฝํ•œ ํ›„์—๋Š” ํผ๋ธ”๋ฆญํ‚ค๋ฅผ ํ†ตํ•ด ์•”ํ˜ธํ™”๋ฅผ ๋ณตํ˜ธํ™”ํ•  ์ˆ˜ ์—†์—ˆ๊ธฐ ๋•Œ๋ฌธ์— ์ธ์Šคํ„ด์Šค์— ์ ‘์†์ด ๋ถˆ๊ฐ€๋Šฅํ•˜๊ฒŒ ๋์Šต๋‹ˆ๋‹ค. ๊ถ๊ธˆํ•˜์‹œ๋ฉด ์•„๋ž˜ ๋ธ”๋กœ๊ทธ๋ฅผ ์ฐธ๊ณ ํ•˜์„ธ์š”(๋ฒˆ์™ธ3) โ†“ ๋ฌผ๋ก  ํผ๋ธ”๋ฆญ ํ‚ค๊ฐ€ ์‰ฝ๊ฒŒ ๋ณ€๊ฒฝ๋˜๊ฑฐ๋‚˜ ํ•˜์ง€๋Š” ์•Š๊ฒ ์ง€๋งŒ ํ˜น์‹œ ๋ณ€๊ฒฝ๋˜์—ˆ์„ ๋•Œ์—๋Š” ์ƒˆ๋กญ๊ฒŒ ์ธ์Šคํ„ด์Šค๋ฅผ ์ƒ์„ฑํ•ด์„œ ๊ธฐ์กด ์ธ์Šคํ„ด์Šค์˜ EBS๋ฅผ ํ• ๋‹นํ•˜๋Š” ๋“ฑ์˜ ๋Œ€์‘๋ฒ•์ด ์žˆ์Šต๋‹ˆ๋‹ค. ์ด๋ฒˆ ๋ธ”๋กœ๊ทธ์—์„œ๋Š” EC2 Instance Connect API๋ฅผ ์‚ฌ์šฉํ•ด์„œ ์ธ์Šคํ„ด์Šค๋ฅผ ๋ณ€๊ฒฝํ•˜์ง€ ์•Š๊ณ  ๊ธฐ์กด์˜ ํ‚คํŽ˜์–ด๋ฅผ ๊ทธ๋Œ€๋กœ ์‚ฌ์šฉํ•  ์ˆ˜๋Š” ๋Œ€์‘๋ฒ•์„ ์ •๋ฆฌํ–ˆ์Šต๋‹ˆ๋‹ค. ๊ฒ€์ฆ ํ™˜๊ฒฝ ์ธ์Šคํ„ด์Šค ์ด๋ฆ„: test-server OS: Amazon Linux 2023 ์ธ์Šคํ„ด์Šค ์œ ํ˜•: t2.micro (ํ…Œ์ŠคํŠธ) ํ‚คํŽ˜์–ด: test-key ์„ธํ๋ฆฌํ‹ฐ ๊ทธ๋ฃน โ€ฆ

ใ‚ฏใƒฉใ‚นใƒกใ‚ฝใƒƒใƒ‰็™บใ€Œใ‚„ใฃใฆใฟใŸใ€็ณปๆŠ€่ก“ใƒกใƒ‡ใ‚ฃใ‚ข | DevelopersIO
Teri RadichelNov 19, 2023
Creating a Service Control Policy To Limit SSH Key Algorithms
~~
ACM.384 Using an SCP with Conditions on the KeyPairType to restrict allowed algorithms when taking actions involving EC2 Key Pairs
~~
#AWS #SSH #EC2 #Keypair
https://medium.com/cloud-security/creating-a-service-control-policy-to-limit-ssh-key-algorithms-51b4abadbcd2
๐Ÿ‘ค ๐Ÿณ๐—ต๐—ผ๐—บ๐—ฎ๐˜€ โœ…๐Ÿ––๐Ÿ‡จ๐Ÿ‡ฎ๐Ÿ”’Apr 19, 2023

Frage an Linux Fachleute.
Man kann ja einstellen, das ein Passwort fรผr den Shell Zugang nach X -Tagen ablรคuft.

Gilt dies auch (also der Passwortablauf) wenn man sich รผber SSH-Authentifizierung mit Schlรผsselpaaren auf dem System anmeldet?

Hierzu habe ich bisher keine Infos im Netz gefunden

#linux #ssh #keypair #password #access

Michael ZeeviJan 15, 2022

Yo, I'm trying to learn the nuances of #openpgp...

I've generated my #keypair, added an additional UID for a secondary E-mail, uploaded to a keyserver, and even setup some identity proofs using #keyoxide.

Question 1: When would one also add a UID for a *work* E-mail?

Question 2: How should one handle their *private* key across devices (personal laptop/smartphone/work laptop)?

#askfedi #gpg #pgp

GrooveStompOct 29, 2020

So I've been reading about GPG keys. It seems like the way I _ought_ to do it is:
- master keypair
- device/application-specific subkeys

But this is actually sufficiently complicated to setup and manage that I'm wondering if it's maybe better to just generate unique keypairs for every device and application?

#gpg #keypair