From feaa025380e43ece9d43c54b0ec7b3c7bca102ba Mon Sep 17 00:00:00 2001
From: lalanza808 <lance@lzatech.org>
Date: Fri, 3 Jan 2020 01:23:54 -0800
Subject: [PATCH] adding readme with security info

---
 README.md | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 README.md

diff --git a/README.md b/README.md
new file mode 100644
index 0000000..35e8522
--- /dev/null
+++ b/README.md
@@ -0,0 +1,20 @@
+# xmrauctions
+
+I'll be filling this in over the following days. Stay tuned.
+
+## Security Go-Live Checklist
+
+In no particular order, nice to haves, and should likely haves:
+
+- [ ] Bad bot spam prevention (fail2ban)
+- [ ] DDoS mitigation
+- [ ] Secrets in SSM with env setting
+- [ ] Email spam prevention
+- [ ] Cloudtrail configured all regions
+- [ ] Web server access logs syncing to S3
+- [ ] Log rotate on access logs
+- [ ] Security ELK dashboard
+- [ ] Malicious Image upload abuse prevention
+- [ ] SES metric alarms
+- [ ] Budget alarms
+- [ ] Unit Tests