AWS elasticbeanstalk documentation change
Summary
Added note about EC2 security groups and updated launch configuration options
Security assessment
While the changes add references to security group management features, they do not indicate a specific security vulnerability being addressed. The updates primarily improve documentation completeness.
Diff
diff --git a/elasticbeanstalk/latest/dg/using-features.managing.security.md b/elasticbeanstalk/latest/dg/using-features.managing.security.md index 7cded82b6..d9ffa4b7f 100644 --- a//elasticbeanstalk/latest/dg/using-features.managing.security.md +++ b//elasticbeanstalk/latest/dg/using-features.managing.security.md @@ -83,0 +84,4 @@ However, recent AWS security guidelines don’t allow an AWS service to automati +###### Note + +There is another aspect of EC2 instance security that designates firewall rules for EC2 instances. This is controlled by EC2 security groups. For more information, see [The Amazon EC2 instances for your Elastic Beanstalk environment](./using-features.managing.ec2.html). + @@ -90 +94 @@ Elastic Beanstalk provides [configuration options](./command-options.html) in th - * [aws:autoscaling:launchconfiguration](./command-options-general.html#command-options-general-autoscalinglaunchconfiguration) – Configure permissions for the environment's Amazon EC2 instances using the `EC2KeyName` and `IamInstanceProfile` options. + * [aws:autoscaling:launchconfiguration](./command-options-general.html#command-options-general-autoscalinglaunchconfiguration) – Configure permissions for the environment's Amazon EC2 instances using the `EC2KeyName`, `IamInstanceProfile`, `DisableDefaultEC2SecurityGroup`, and `SecurityGroups` options.