David Clinton

419 points
David Clinton
Toronto

DAVID CLINTON is a system administrator, teacher, and writer. He has administered, written about, and created training material for many important technology subjects including Linux systems, cloud computing (AWS in particular), and container technologies like Docker.

He is the author of Manning's Learn Amazon Web Services in a Month of Lunches and Linux in Action and the AWS Certified Solutions Architect Study Guide: Associate SAA-C01 Exam 2nd Edition from Wiley/Sybex. Many of his video training courses can be found on Pluralsight.com, and links to his other books on Linux administration, server virtualization, and learning technology can be found on his Bootstrap IT website.

Authored Content

Authored Comments

Hi,
You're correct that my rules did allow all outbound traffic. I did this because I can't be 100% sure that software and data upgrades won't require access through a different (non-HTTP) port. The idea, though, is that I fully trust those four sites, so allowing full access isn't a major risk.
Thanks!

That's a good point. However the current root device isn't necessarily sda. I've had workstations where, for various reasons, the root was sdb or even higher.