DaaS / Products / Full-Stack Security Hardening for Compliance

Full-Stack Security Hardening for Compliance

A developer deploying a web application on Alibaba Cloud Linux servers backed by RDS needs to harden both the OS-level compliance baseline (MLPS 2.0, CVE patches) and the database access controls (IP whitelists, SSL encryption) to pass a unified security audit.

Products involved

Scenario

A developer deploying a web application on Alibaba Cloud Linux servers backed by RDS needs to harden both the OS-level compliance baseline (MLPS 2.0, CVE patches) and the database access controls (IP whitelists, SSL encryption) to pass a unified security audit.

How the products combine

  1. rds · rds-configure-security — ApsaraDB RDS — Configure database security settings and access control

    2. See rds/rds-configure-security.

  2. alinux · alinux-configure-compliance — Alibaba Cloud Linux — Configure system security policies and compliance baselines

    3. See alinux/alinux-configure-compliance.

Typical questions