Closed mackenzie-oa closed 1 year ago
Follow security best practices by disabling IMDSv1 on the Launch Template.
This will help anyone using this module who is required to meet compliance and/or security requirements that flag this feature.
https://aws.amazon.com/blogs/security/defense-in-depth-open-firewalls-reverse-proxies-ssrf-vulnerabilities-ec2-instance-metadata-service/ https://aquasecurity.github.io/tfsec/v1.8.0/checks/aws/autoscaling/enforce-http-token-imds/
Perfect, can you bump the terraform module version so I can use the terraform registry? Thanks again for merging my PR @int128 👍
Follow security best practices by disabling IMDSv1 on the Launch Template.
This will help anyone using this module who is required to meet compliance and/or security requirements that flag this feature.
https://aws.amazon.com/blogs/security/defense-in-depth-open-firewalls-reverse-proxies-ssrf-vulnerabilities-ec2-instance-metadata-service/ https://aquasecurity.github.io/tfsec/v1.8.0/checks/aws/autoscaling/enforce-http-token-imds/