Hello. I was doing some of the free AWS test questions and I came up about Pen testing and im not sure which is the correct answer.
The question said something like "An AWS customer did pen testing on their own web app on an EC2 and was later contacted by AWS for violating the AWS Acceptable Use Policy" . How can the customer perform the test without violating the policy?
A. Submit pen test request
B. Exclude port 80 , 443
C. Run test against instances with Inspector installed
D. Deploy test client to same VPC as the app
None of these seem right. You dont need to do A anymore, you dont need to exclude ports. C doesnt seem necessary as well as D. Any thoughts on this?
You’re correct; this is a recent change by AWS. Up until recently, you could not encrypt your root volume when launching an instance. Instead, you had to set encryption after it was set up.
AWS made these changes in early 2019, and the course does not reflect this change yet. However, AWS has a rule that new features like this won’t appear on the certifications exams until at least six months after their release so that the change won’t affect your exam preparations.
We’ve made a note of this in our course review log for future updates