[wellylug] Best practices for AWS EC2 ssh security

Fehmi Noyan ISI fnoyanisi at yahoo.com
Thu Aug 16 23:28:11 UTC 2018

Hi there,

I have been seeing lots of ssh brute force attacks to my ec2 instance.

I use key based authentication and I will change the ssh port something other than 22.

Does anybody have other recommendations, such as a good set of AWS Security Group INBOUND rules? 

I read using fail2ban could be another option, but I want to stop to attempt before it reaches my ec2 instance in the first place.


More information about the wellylug mailing list