Amazon Linux AMI Amazon Web Services: Install an Intrusion Prevention System (IPS) on an EC2 Instance Intall fail2ban on first instance > SSH into first instance as cloud_user Install fail2ban sudo yum install fail2ban -y sudo service fail2ban start Output Last By Austin Songer 27 Sep 2019
Audit Linux Security: Working with the Audit Log Create audit rules to watch `/etc/passwd` for reads, `/etc/sudoers/` for reads and writes, and `/sbin/visudo` for executions. Run these commands auditctl -w By Austin Songer 23 Sep 2019