Skip to content

TODO List

Jump to bottom
dav3r edited this page Aug 24, 2018 · 28 revisions

Things left to do before launch

  • Confirm enough Nessus licenses are available for our Production instances
  • Verify full scans of CAL and other sites work as expected
  • Take best guess at EC2 instance types (better to be too beefy at first)
    • Mongo: m4.10xlarge
    • Nessus: m4.2xlarge
    • nmap: t2.large
  • Ensure that Production workspace can be safely terraformed from current state to launch state without nuking existing MongoDB data

Other things to do after launch that we don't want to forget about

  • Set up NVD sync script
  • Set up cyhy-archive (weekly archive script) and decide where archived data should be sent to
  • Automate Nessus license key, user setup, policy deployment
  • Update to licensed MaxMind GeoIP2 database (docker container and aws deployment) https://download.maxmind.com/app/geoip_download?edition_id=GeoIP2-City&license_key=rOV57jX1AN9f&suffix=tar.gz
  • Create a mechanism to watch for scans that have been in RUNNING status for "too long" and alert us
  • Review all EC2 instances and volumes to determine if they should be resized
  • Make commander more resilient- if any resource (database, scanner) is unavailable, gracefully wait until it becomes available; alert when a sane timeout has been reached
Clone this wiki locally