AWS systems-manager documentation change
Summary
Clarified that SSH encryption occurs within a secure TLS connection between AWS CLI and Session Manager endpoints
Security assessment
The change provides more detailed information about encryption layers (TLS) but doesn't address a specific vulnerability. It enhances security documentation by explaining transport security mechanisms.
Diff
diff --git a/systems-manager/latest/userguide/session-manager-logging.md b/systems-manager/latest/userguide/session-manager-logging.md index a6b4309fa..7acf0197d 100644 --- a//systems-manager/latest/userguide/session-manager-logging.md +++ b//systems-manager/latest/userguide/session-manager-logging.md @@ -40 +40 @@ Windows - * Logging isn't available for Session Manager sessions that connect through port forwarding or SSH. This is because SSH encrypts all session data, and Session Manager only serves as a tunnel for SSH connections. + * Logging isn't available for Session Manager sessions that connect through port forwarding or SSH. This is because SSH encrypts all session data within the secure TLS connection established between the AWS CLI and Session Manager endpoints, and Session Manager only serves as a tunnel for SSH connections.