How will AWS respond to this request?

By:
On:
In: SOA-C01
Tagged:
With: 0 Comments
A security researcher has published a new Common Vulnerabilities and Exposures (CVE) report that impacts a popular operating system.A SysOps Administrator is concerned with the new CVE report and wants to patch the company’s systems immediately.The administrator contacts AWS Support and requests the patch be applied to all Amazon EC2 instances.

How will AWS respond to this request?

AWS will apply the patch during the next maintenance window, and will provide the Administrator with a report of all patched EC2 instances.

AWS will relaunch the EC2 instances with the latest version of the Amazon Machine Image (AMI), and will provide the Administrator with a report of all patched EC2 instances.

AWS will research the vulnerability to see if the Administrator’s operating system is impacted, and will patch the EC2 instances that are affected.

AWS will review the shared responsibility model with the Administrator and advise them regarding how to patch the EC2 instances.

Explanations:

AWS does not automatically apply patches to EC2 instances. Maintenance windows are for infrastructure-level updates, not for specific instance patching.

AWS does not automatically relaunch EC2 instances with a new AMI to apply patches unless specifically instructed by the user or as part of an automation setup.

AWS does not apply patches to customer EC2 instances unless specifically requested for a managed service like AWS Systems Manager. AWS would not take action without confirmation of the affected operating system version.

According to the shared responsibility model, AWS is responsible for the security of the cloud infrastructure, while customers are responsible for managing the security of their EC2 instances. AWS will guide the administrator on how to patch their EC2 instances.

Leave a Reply

Your email address will not be published. Required fields are marked *

3 × 3 =