We need to get security updates onto instances on live AWS services. So, whats
the best strategy? If we’re using the Amazon Linux AMI, then we security
updates are automatically applied on the initial boot of the AMI. So if we
cycle our instances, we get a freshly updated EC2 instance.