Upgrade to Pro — share decks privately, control downloads, hide ads and more …

vuls-jp_ec2-vuls-config_ja

Shuichi Ohsawa
September 26, 2016
Programming
0
1.1k

 vuls-jp_ec2-vuls-config_ja

Shuichi Ohsawa

September 26, 2016
Tweet

More Decks by Shuichi Ohsawa

See All by Shuichi Ohsawa
実践的データ基盤への処方箋 輪読会 / round-reading-jissennteki-data-kiban
ohsawa0515
1
190
datatech-jp Casual Talks #1 「BigQueryのネイティブJSON型がサポートされたので触ってみた」 / support-bigquery-native-json-and-try-it
ohsawa0515
0
2.3k
技書博後夜祭 第一夜「AWSのコスト最適化を はじめよう!」 / gishohaku5-koyasai-starting-aws-cost-optimization
ohsawa0515
0
350
JAWS-UG 初心者支部#36 「AWSで高額請求やらかした話」 / story-about-high-billing-on-aws
ohsawa0515
0
1.2k
インフラエンジニアBooks #7 「Amazon Web Servicesコスト最適化入門」 / infra-engineer-books-aws-cost-optimization
ohsawa0515
12
4.9k
ECSでGPUを使う 2020年版 / jawsug-container18-lt-using-gpu-on-ecs-2020
ohsawa0515
0
2.1k
急成長するシステムに追いつくためのインフラ改善への取り組み / sansan-m3-tech-night-improve-infrastructure
ohsawa0515
0
2.7k
AWS SDK for GoのContextパターン / aws sdk for go context pattern
ohsawa0515
3
730
インフラエンジニアがConsulとStretcherをつかったデプロイ改善で開発効率の向上に貢献した話(短縮版 + α) / omotesando.rb #33
ohsawa0515
0
970

Other Decks in Programming

See All in Programming
API for docs
soutaro
2
1.4k
Lambda(Python)の リファクタリングが好きなんです
komakichi
3
210
Enterprise Web App. Development (1): Build Tool Training Ver. 5
knakagawa
1
120
Agentic Applications with Symfony
el_stoffel
2
310
RuboCop: Modularity and AST Insights
koic
2
1.4k
音声プラットフォームのアーキテクチャ変遷から学ぶ、クラウドネイティブなバッチ処理 (20250422_CNDS2025_Batch_Architecture)
thousanda
0
220
Make Parsers Compatible Using Automata Learning
makenowjust
2
5.1k
Road to RubyKaigi: Making Tinny Chiptunes with Ruby
makicamel
4
410
The Nature of Complexity in John Ousterhout’s Philosophy of Software Design
philipschwarz
PRO
0
120
MCP調べてみました! / Exploring MCP
uhzz
2
2.3k
Ruby's Line Breaks
yui_knk
2
1.2k
Kamal 2 – Get Out of the Cloud
aleksandrov
1
190

Featured

See All Featured
Statistics for Hackers
jakevdp
798
220k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
34
2.9k
Speed Design
sergeychernyshev
29
900
Evolution of real-time – Irina Nazarova, EuRuKo, 2024
irinanazarova
8
670
It's Worth the Effort
3n
184
28k
GitHub's CSS Performance
jonrohan
1030
460k
Rebuilding a faster, lazier Slack
samanthasiow
80
8.9k
The Language of Interfaces
destraynor
157
25k
We Have a Design System, Now What?
morganepeng
52
7.5k
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
sstephenson
160
15k
Agile that works and the tools we love
rasmusluckow
328
21k
Learning to Love Humans: Emotional Interface Design
aarron
273
40k

Transcript

  1. EC2ͷVulsεΩϟϯΛ΄Μͷগ͠ศར͢Δπʔϧ ʮec2-vuls-configʯ VulsࡇΓ #1 @ohsawa0515

  2. ࣗݾ঺հ େᖒलҰ (@ohsawa0515) GitHub: https://github.com/ohsawa0515 Blog: http://blog.jicoman.info/

  3. ͭ͘Γ·ͨ͠ • ec2-vuls-config • https://github.com/ohsawa0515/ec2-vuls- config • Amazon EC2ΠϯελϯεͷλάΛݟͯઃఆ ϑΝΠϧ(config.toml)Λॻ͖׵͑Δ

  4. ͳͥͭͬͨ͘ͷ͔ • Πϯελϯε(αʔό)͕ৗʹมΘΓଓ͚͍ͯΔ؀ڥʹ͓͍ͯ
 εΩϟϯର৅΋ৗʹมΘΓଓ͚͍ͯΔ
 e.g. ΦʔτεέʔϦϯάɺ৽نαʔόߏஙɺ࡟আ etc • ৗʹεΩϟϯର৅Λߋ৽(ઃఆϑΝΠϧΛߋ৽)͢Δͷ͸େม •

    ͢΂ͯͷαʔόΛεΩϟϯ͢Δඞཁ͸ͳ͍ • ಉ͡ߏ੒ͷαʔό(e.g. Webαʔό)͕ෳ਺୆͋ΔͳΒͦͷ಺ͷ1୆͚ͩΛ
 εΩϟϯ͢Ε͹ྑ͍͸ͣ(ಛʹChef, Ansible౳Ͱߏ੒ͨ͠৔߹) • Amazon Inspector ͷΑ͏ʹλά͚ͩΛݟͯࣗಈతʹεΩϟϯର৅Λݟ͚ͭΔ
 ࢓૊Έ͕ཉ͔ͬͨ͠

  5. Πϯετʔϧ&ઃఆ • $ go get -u github.com/ohsawa0515/ec2-vuls-config • $ export

    AWS_ACCESS_KEY_ID=ACCESS_KEY_ID • $ export AWS_SECRET_ACCESS_KEY=ECRET_ACCESS_KEY • $ export AWS_REGION=us-east-1 • EC2Πϯελϯεʹ࣍ͷλάΛઃఆ
 ɾ Nameλά: αʔό໊ e.g. web-server-1
 ɾ εΩϟϯλά: εΩϟϯର৅ʹࢦఆ͍ͨ͠λά e.g. Vuls-Scan:True

  6. ࣮ߦ • ݩͱͳΔઃఆϑΝΠϧΛ༻ҙ͢Δ • ࣮ߦ • $ ec2-vuls-config —config path/to/config.toml

  7. ࣮ߦ݁Ռ(ྫ) • ৚݅ʹ߹ͬͨEC2Πϯελϯε৘ใΛઃఆϑΝΠϧʹॻ͖׵͑ͯ͘ΕΔ • σϑΥϧτͰ͸ɺλάՃ͑ͯɺLinuxαʔό & ىಈத(εςʔλε=running)͕ର৅

  8. ·ͱΊ • ec2-vuls-config ͱ͍͏ͪΐͬͱͨ͠πʔϧΛͭ͘Γ·ͨ͠ • EC2λάΛઃఆ͢Δ͚ͩͰεΩϟϯର৅ΛઃఆͰ͖ΔͷͰ (ࣗ෼͸)ॏๅ͍ͯ͠·͢ • ·ͩ·ͩػೳͱͯ͠͸෺଍Γͳ͍ͱࢥ͍·͕͢
 ʮྑ͍ͳʂʯͱࢥͬͨΒGitHubͷελʔΛ͓ئ͍͠·͢ʂ

    • https://github.com/ohsawa0515/ec2-vuls-config