问题描述
我工作的一个科学项目,并想用亚马逊EC2主办的一样。
I am working for a scientific project and would like to use the Amazon EC2 to host the same.
现在,我要通过现有的AMI创建我自己的,但我发现了一个AMI中的AMI的社区名单 - 这完全符合
Now, I was going through the existing AMIs to create my own, but I found one AMI in the community list of AMIs - which fits perfectly.
我的问题是下面的 - 是社会AMI的安全吗?是否有可能为恶意用户在该说的用户名/密码等可以被发送到远程服务器或东西这样的方式创建AMI?亚马逊是否做检查,以确保不会发生的任何形式的?
My question is the following - are the community AMIs safe? Is it possible for a malicious user to create an AMI in such a way that say the usernames/passwords etc can be sent to a remote server or something? Does Amazon do any sort of checking to make sure it cannot happen?
我无法找到在亚马逊网站回答这些。我是pretty的肯定,你们会感到同样的问题 - 你可以请提供你的答案
I couldnt find the answers to these in Amazon site. I am pretty sure that you guys would have felt the same issues - could you please provide your answers?
问候
K
推荐答案
该社区的AMI是不是特别安全的 - 如果你相信AMI的来源,应该是好的,但如果源是一个未知的实体给你,你应该慢慢来。
The community AMIs are not especially safe - if you trust the source of the AMI, it should be okay, but if the source is an unknown entity to you, you should probably take it easy.
阿美族基本上允许你安装任何你想要的形象 - 你可以有许可证的问题,或恶意软件,如果你是不是在你的方法对这些谨慎
The AMIs basically allow you to install whatever you want in the image - you could have licensing issues or malicious software if you are not cautious in your approach to these.
我一般创建我自己的,首先是我想要的(Ubuntu的)基础映像和安装所需要的。
I generally create my own, starting with a base image of what I want (Ubuntu) and installing what is needed.
这篇关于亚马逊社区的AMI安全的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!