Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Do(n’t) try this at work - Technically, you _ca...
Search
Ben Bridts
May 27, 2021
0
190
Do(n’t) try this at work - Technically, you _can_ do this
Ben Bridts
May 27, 2021
Tweet
Share
More Decks by Ben Bridts
See All by Ben Bridts
Using IAM Roles Anywhere for free
benbridts
0
2
The Hidden Costs of Managed Open Source
benbridts
0
17
re:Invent re:Cap 2023: Evolving your architecture
benbridts
0
55
A closer look at new ways to manage access - EKS Pod Identiy and S3 Access Grant
benbridts
0
10
From ‘huh?’ to privilege escalation
benbridts
0
25
re:Invent re:Cap - Removing Heavy Lifting
benbridts
0
96
Policy as Code: Putting best practices in your repository
benbridts
0
180
(Don't) try this at work - Lightning Talk
benbridts
0
130
AWS Systems Manager
benbridts
1
140
Featured
See All Featured
Building Adaptive Systems
keathley
43
2.8k
The Power of CSS Pseudo Elements
geoffreycrofte
79
6k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
114
20k
Optimizing for Happiness
mojombo
379
70k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
48
9.7k
Making Projects Easy
brettharned
119
6.4k
Automating Front-end Workflow
addyosmani
1371
200k
Thoughts on Productivity
jonyablonski
70
4.9k
How to Think Like a Performance Engineer
csswizardry
27
2k
Put a Button on it: Removing Barriers to Going Fast.
kastner
60
4k
Designing Experiences People Love
moore
142
24k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
32
2.2k
Transcript
Do(n’t) try this at work Technically, you can do this
Ben Bridts
https://mobile.twitter.com/benbridts/status/1371812381161103362 https://via.benbridts.be/comsum/tweet
https://twitter.com/ben11kehoe/status/1074288317108232192 https://via.benbridts.be/comsum/packrat
https://sprocketfox.io/xssfox/2020/03/05/bigbuckopsworks/ https://via.benbridts.be/comsum/bigbucks
https://github.com/njbmartin/diggydb-nodejs https://via.benbridts.be/comsum/diggy
Using your access key
AWS Management Console
https://docs.aws.amazon.com/cli/latest/reference/iam/delete-login-profile.html
https://docs.aws.amazon.com/IAM/latest/UserGuide/console_controlling-access.html More info: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-custom-url.html
None
None
None
None
https://signin.aws.amazon.com/federation? Action=login& Issuer=a+python+script& Destination=https%3A%2F%2Fconsole.aws.amazon.com%2F& SigninToken=ow8X9[...]XAyan
Do • Simplify switching between accounts • Start a new
browser for every account Don’t • Use credentials from EC2 / Lambda / CodeBuild / … • Block console access
Infinite Storage
AWS CloudShell
https://aws.amazon.com/cloudshell/faqs/
https://aws.amazon.com/cloudshell/faqs/
https://signin.aws.amazon.com/switchrole https://docs.aws.amazon.com/cli/latest/reference/sts/assume-role.html
None
None
https://botocore.amazonaws.com/v1/documentation/api/latest/reference/loaders.html
https://github.com/iann0036/vscode-aws-cloudshell https://via.benbridts.be/comsum/vscode
Reducing Errors The easy way
Amazon CloudWatch
None
https://…execute-api.eu-west-1.amazonaws.com/Prod/run https://…execute-api.eu-west-1.amazonaws.com/Prod/run?fail=y
None
None
None
https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazoncloudwatch.html
None
Thank you! Ben Bridts
[email protected]
@BenBridts | @WeAreCloudar www.cloudar.be