Currently have a working private instance, I am looking to harden the Amazon AMI image.
What are the recommended steps to harden the server and agent in AWS?
I have looked around, but did not see any obvious list of steps. So here are my current attempts:
I have edited the security group to block ssh inbound traffic except from some trusted ips.
I have restricted the http inbound traffic, but when the agent restarts, I am not sure how to add that new ip to the inbound rule (or if I can assign a known ip to the restarted agent).
I have added basic auth to the server, but when the agent connects it gets blocked, so I need to dig into how to send the auth from the agent.
Will be adding a self signed cert to the server, but I suspect I will need to edit the agent to add the trusted cert / allow invalid certs.
Haven’t explored if there is away to use security groups in a more effective manner.
Thanks for any suggestions!