Skip to content

Commit

Permalink
Merge pull request #27 from GatienBoquet/patch-2
Browse files Browse the repository at this point in the history
Update README.md
  • Loading branch information
danieldanielecki authored May 30, 2024
2 parents 687ba51 + f5d2d1f commit 777d96b
Showing 1 changed file with 4 additions and 3 deletions.
7 changes: 4 additions & 3 deletions README.md
Original file line number Diff line number Diff line change
Expand Up @@ -2635,7 +2635,8 @@ We are so thankful for every contribution, which makes sure we can deliver top-n

**[⬆ Back to Top](#table-of-contents)**

### What is an effective method to mitigate this?
### You run an ad-supported photo sharing website using Amazon S3 to serve photos to visitors of your site. At some point you find out that other sites have been linking to the photos on your site, causing loss to your business.
What is an effective method to mitigate this?

- [x] Remove public read access and use signed URLs with expiry dates.
- [ ] Use CloudFront distributions for static content.
Expand Down Expand Up @@ -2769,7 +2770,7 @@ We are so thankful for every contribution, which makes sure we can deliver top-n

### You are tasked with setting up a Linux bastion host for access to Amazon EC2 instances running in your VPC. Only clients connecting from the corporate external public IP address 72.34.51.100 should have SSH access to the host. Which option will meet the customer requirement?

- [x] Security Group Inbound Rule: Protocol – TCP.
- [x] Security Group Inbound Rule: Protocol – TCP. Port Range – 22, Source 72.34.51.100/32
- [ ] Port Range- 22, Source 72.34.51. 100/32.
- [ ] Security Group Inbound Rule: Protocol – UDP, Port Range- 22, Source 72.34.51.100/32.
- [ ] Network ACL Inbound Rule: Protocol – UDP, Port Range- 22, Source 72.34.51.100/32.
Expand Down Expand Up @@ -7696,4 +7697,4 @@ Which solution meets these requirements?
- [ ] Use the EC2 serial console to directly access the terminal interface of each instance for administration.
- [x] Attach the appropriate IAM role to each existing instance and new instance. Use AWS Systems Manager Session Manager to establish a remote SSH session.
- [ ] Create an administrative SSH key pair. Load the public key into each EC2 instance. Deploy a bastion host in a public subnet to provide a tunnel for administration of each instance.
- [ ] Establish an AWS Site-to-Site VPN connection. Instruct administrators to use their local on-premises machines to connect directly to the instances by using SSH keys across the VPN tunnel.
- [ ] Establish an AWS Site-to-Site VPN connection. Instruct administrators to use their local on-premises machines to connect directly to the instances by using SSH keys across the VPN tunnel.

0 comments on commit 777d96b

Please sign in to comment.