Some random tips you would like to know about AWS EC2

I have been writing posts about AWS. And after so long again I am writing yet another post which is a compilation of tips and tricks you would love to do to secure your EC2 instance. Securing and EC2 instance is much more similar like any other operating systems. Here I am writing about some tips I recently did on one of a Linux EC2 instance.

Here are gist snippet tips that you can use to secure your Linux Server.
Install mod security module
yum install mod_security
service httpd restart
view raw install_modsecurity.sh hosted with ❤ by GitHub

SSH configuration to enable keys for some users and passwords for some users
#/etc/ssh/sshd_config
#ec2-user and root uses key file for login
Match User ec2-user,root
PasswordAuthentication no
#testuser uses password for login
Match User testuser
PasswordAuthentication yes
view raw sshd_config hosted with ❤ by GitHub

Disable mysql history
rm $HOME/.mysql_history
ln -s /dev/null $HOME/.mysql_history
view raw disable_mysql_history.sh hosted with ❤ by GitHub

Installing mod_evasive for DOS attack prevention 
yum install httpd-devel
wget wget http://www.zdziarski.com/blog/wp-content/uploads/2010/02/mod_evasive_1.10.1.tar.gz 
tar -xzf mod_evasive_1.10.1.tar.gz 
cd mod_evasive 
apxs -cia mod_evasive20.c
#/etc/httpd/conf.d/mod_evavsive.conf
LoadModule evasive20_module /usr/lib64/httpd/modules/mod_evasive20.so
<IfModule mod_evasive20.c>
DOSHashTableSize 3097
DOSPageCount 3
DOSSiteCount 100
DOSPageInterval 3
DOSSiteInterval 5
DOSBlockingPeriod 300
DOSLogDir "/var/log/httpd/modevasive/"
DOSEmailNotify someone@somewhere.com
</IfModule>
view raw mod_evavsive.conf hosted with ❤ by GitHub

Comments

Post a Comment

Popular posts from this blog

Automate file upload in Selenium IDE

Image
Selenium IDE is an integrated development environment for Selenium tests. It records your interactions with websites to help you generate and maintain site automation, tests, and remove the need to manually step through repetitive tasks. Selenium IDE can be installed in Google Chrome from  here . For Firefox visit this  link . File upload in Selenium IDE cannot be automated simply by recording from the IDE. Because when we select the file input field, the dialog that opens up is a system window which cannot be controlled by Selenium IDE. Therefore, clicking the input file field to select a file will not work. Also the selected file path is changed to C:\fakepath\filename.extension. So to fix this issue, we need to configure the browser to support file upload and then instead of clicking the input field we set the file using ‘type’ selenium command which is shown below. First, to support file upload in Selenium IDE, configure your browser to support file upload: Visit ‘...
Read more

How To Install and Configure Nextcloud

Image
  Original post: https://www.digitalocean.com/community/tutorials/how-to-install-and-configure-nextcloud-on-ubuntu-20-04 Step 1 – Installing Nextcloud We will be installing Nextcloud using the  Snap  packaging system. This packaging system, available on Ubuntu 20.04 by default, allows organizations to ship software, along with all associated dependencies and configuration, in a self-contained unit with automatic updates. This means that instead of installing and configuring a web and database server and then configuring the Nextcloud app to run on it, we can install the  snap  package which handles the underlying systems automatically. To download the Nextcloud snap package and install it on the system, type: sudo snap install nextcloud Copy The Nextcloud package will be downloaded and installed on your server. You can confirm that the installation process was successful by listing the changes associated with the snap: snap changes nextcloud Copy Output I...
Read more

Google translate adds Nepali Language Conversion

Image
http://translate.google.com/ I believe you must be familiar with Google Translate . If you're not yet familiar then Wikipedia explains it as: "Google Translate  is a  free , multilingual  statistical   machine-translation  service provided by  Google Inc.  to translate written text from one language into another." Its been helping users in translating text and documents from one language to another language.  And now Google Translate has added Nepali Language too. This is a good news for all of us to have Nepali Language in Google Translate. Yet the Nepali Language conversion needs our support for better translation. If you are interested in making this service better than you can visit :   http://translate.google.com/question?hl=en&sl=ne&tl=en  and help Google Translate better in Nepali Language Translation. You don't have to write all the translations to contribute, you can just rate the already translated texts to c...
Read more