Skip to main content

Removing Authorized keys & history from AWS instance

AWS recommends to delete authorized keys and and history from your instances before creating and publishing AMI.

You might get below error when you submit your AMI for scanning without removing the keys.
Authorized keys found

Authorized key(s) found in the following location(s):

  • /home/ec2-user/.ssh/authorized_keys:1
    • 

  • /root/.ssh/authorized_keys:1
    •
To find authorized keys :

find / -name "authorized_keys" -print -exec cat {} \;

To remove keys:

find / -name "authorized_keys" –exec rm –f {} \;
To remove history :

find /root/.*history /home/*/.*history -exec rm -f {} \;
For more information refer to https://aws.amazon.com/articles/0155828273219400


Comments

Post a Comment

Popular posts from this blog

Java - Windons Authentication to SQL Server with jTDS Driver

To make jTDS driver to work with your SQL server windows authentication use below jdbc url format. 1. windows authentication without SSO jdbc:jtds:sqlserver:// <HOSTNAME>:1433;instance= SQLEXPRESS;databaseName= lportal;domain=<domain>;user= <user>;password=<password> 2. windows authentication with SSO jdbc:jtds:sqlserver:// <HOSTNAME>:1433;instance= SQLEXPRESS;databaseName= lportal;domain=<domain> and set the java argument something like this to load ntlmauth.dll   -Djava.library.path="<driver-folder>/windowsSSO" Note : if you are installing sqlexpress/sql server on your desktop or server you need to enable tcp/ip connectivity to the instance. Steps to enable tcp/ip connectibity: 1. Open SQL Server Configuration Manager 2. Goto  Configuration Manager > SQL Server Network Configuration > Protocols for <instancename> 3. Right click on TCP/IP and select enable. ...
Post a Comment
Read more

Liferay - Adding role subtype

By default liferay provides three types of role's  Site Oraganization Regular To derive a custom role type out of the existing types, use below property in protal-ext.properties roles.regular.subtypes=mysubtype1, mysubtype2 After creating a role using control panel, click on edit to select the subtype
Post a Comment
Read more