As an optimistic person, I used to think that the security of cloud computing is only a small probability event. In most cases, no one is very interested in attacking you, but last weekend, one thing happened, and I completely changed this idea. I started an instance on linode FOR THE yunengine internal test, but on the 7th, this instance was suddenly closed by linode because "TOS violation-SSH Brute Force", that is to say, someone else cracked my root password and used this machine to continue sending SSH access, to crack other machines, I sent 47523 packets to 262286 hosts in about four hours, in addition, I do not know who changed the password of the host running WordPress (that is, "Everyone is cloud"). In general, the danger of "outside" exists, to avoid being attacked again, I got a 14-bit long password on the new instance, hoping to avoid further attacks. In addition, linode provides a host security document. You can refer to the following summary:
- Maintain system and software updates
- Disable unused services
- Lock SSH
- Restrict access by root and system users
- Use a firewall to block excessive traffic
- Use denyhosts and fail2ban to prevent password-based attacks
- Encrypt Sensitive data
Finally, although cloud computing security issues do exist, the simplicity of cloud computing in architecture and Management will make it "promising" in terms of security ", especially when we are very concerned and paying attention to it.