Publicly accessible EC2 instance uses IMDSv1

이 페이지는 아직 영어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

A publicly-accessible EC2 instance uses the Instance Metadata Service (IMDS) Version 1.

Using IMDSv1 increases the risk of attackers stealing your AWS IAM credentials via vulnerabilities like Server-Side Request Forgery (SSRF). In this scenario, attackers can abuse applications running on an EC2 instance to steal your keys and begin accessing your cloud environment. For more information, see our Datadog Security Labs article on IMDS security and why upgrading to IMDSv2 is essential.

Remediation

  1. Follow the Transition to using Instance Metadata Service Version 2 docs to learn how to transition and reconfigure your software.
PREVIEWING: drodriguezhdez/add_public_docs_log_summarization