AWS securityhub documentation change
Summary
Updated anchor links, clarified Auto Scaling terminology, and standardized load balancer acronyms.
Security assessment
Changes improve documentation clarity but don't address security vulnerabilities or add new security guidance. Terminology updates (e.g., 'Amazon EC2 Auto Scaling') don't impact security posture.
Diff
diff --git a/securityhub/latest/userguide/exposure-ec2-instance.md b/securityhub/latest/userguide/exposure-ec2-instance.md index a4d8d0ec7..066118ce4 100644 --- a//securityhub/latest/userguide/exposure-ec2-instance.md +++ b//securityhub/latest/userguide/exposure-ec2-instance.md @@ -33 +33 @@ The remediation guidance provided in this topic might require additional consult - * [The Amazon EC2 instance has an open security group](./exposure-ec2-instance.html#w63aab7c29c19c15c15c15) + * [The Amazon EC2 instance has an open security group](./exposure-ec2-instance.html#w2aab7c33c19c15c15c15) @@ -35 +35 @@ The remediation guidance provided in this topic might require additional consult - * [The Amazon EC2 instance has a public IP address](./exposure-ec2-instance.html#w63aab7c29c19c15c15c17) + * [The Amazon EC2 instance has a public IP address](./exposure-ec2-instance.html#w2aab7c33c19c15c15c17) @@ -70 +70 @@ Modify existing instances to use IMDSv2. For more information, see [Modify insta -If your instance is part of an Auto Scaling group, update your launch template or launch configuration with a new configuration, and perform an instance refresh. +If your instance is part of an Amazon EC2 Auto Scaling group, update your launch template or launch configuration with a new configuration, and perform an instance refresh. @@ -132 +132 @@ If service-level administrative permissions are necessary for the instance, cons -###### Apply updates to instances in Auto Scaling group +###### Apply updates to instances in Amazon EC2 Auto Scaling group @@ -208 +208 @@ Consider the following options for alternative access methods: - * **Use WAF and Elastic Load Balancing or Application Load Balancer** – For instances that are running web applications, consider using an LB combined with AWS Web Application Firewall (WAF). LBs can be configured to allow your instances to run in private subnets while the LB runs in a public subnet and handles internet traffic. Adding a WAF to your load balancer provides additional protection against web exploits and bots. + * **Use WAF and ELB or Application Load Balancer** – For instances that are running web applications, consider using an LB combined with AWS Web Application Firewall (WAF). LBs can be configured to allow your instances to run in private subnets while the LB runs in a public subnet and handles internet traffic. Adding a WAF to your load balancer provides additional protection against web exploits and bots.