Skip to content
/ ansible-deny-ims Public

Ansible play to block access to instance metadata service on AWS for non-root users.

License

GPL-3.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

sonoransun/ansible-deny-ims

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
aws-deny-imds.yml
aws-deny-imds.yml
 
 

Repository files navigation

ansible-deny-ims

Ansible play to block access to instance metadata service on AWS for non-root users.

Many new to AWS are surprised to learn that unprivileged access to the instance metadata service can be used to completely destroy your instances and network.

By restricting access to root users only, you avoid a service vulnerability from becoming a critical hole in your infrastructure.

For more information on this type of attack, see: https://medium.com/@shurmajee/aws-enhances-metadata-service-security-with-imdsv2-b5d4b238454b

About

Ansible play to block access to instance metadata service on AWS for non-root users.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published