Shadi's questions -server

Shadi

Asked: 2019-08-08 04:27:38 +0800 CST

Is open-source infrastructure safe?

My AWS infrastructure is publicly available here. Is this a security concern?

I was prompted to ask this following the Capital One breach and after learning about https://opensourceinfra.org/

PS 1: Please be nice and don't hack me if it is indeed insecure. I did my best in reviewing the repo for security breaches. I'm just posting this here for the sake of public knowledge and public good :)

PS 2: This question was originally posted on stackoverflow.com here. A user replied saying that EC2 instance ID and VPC-related info are sensitive, but I found this post saying it's safe to share EC2 instance IDs.

Edit: apparently I need to move this again to security.stackexchange.com here

Edit 2: I ended up moving the question to reddit where I got much more feedback.

Is open-source infrastructure safe?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?