Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Do(n’t) try this at work - Technically, you _can_ do this
Search
Ben Bridts
May 27, 2021
0
140
Do(n’t) try this at work - Technically, you _can_ do this
Ben Bridts
May 27, 2021
Tweet
Share
More Decks by Ben Bridts
See All by Ben Bridts
re:Invent re:Cap 2023: Evolving your architecture
benbridts
0
31
A closer look at new ways to manage access - EKS Pod Identiy and S3 Access Grant
benbridts
0
2
From ‘huh?’ to privilege escalation
benbridts
0
12
re:Invent re:Cap - Removing Heavy Lifting
benbridts
0
64
Policy as Code: Putting best practices in your repository
benbridts
0
140
(Don't) try this at work - Lightning Talk
benbridts
0
91
AWS Systems Manager
benbridts
1
87
Mistakes I made when writing Infrastructure as Code, and how to avoid them
benbridts
0
53
~$ aws help # things you might not know about the AWS CLI
benbridts
1
180
Featured
See All Featured
Atom: Resistance is Futile
akmur
258
25k
Embracing the Ebb and Flow
colly
78
4.1k
Testing 201, or: Great Expectations
jmmastey
27
6.3k
Web development in the modern age
philhawksworth
201
10k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
20
1.6k
Easily Structure & Communicate Ideas using Wireframe
afnizarnur
185
16k
The Art of Programming - Codeland 2020
erikaheidi
41
12k
The Illustrated Children's Guide to Kubernetes
chrisshort
28
46k
Faster Mobile Websites
deanohume
296
30k
Side Projects
sachag
451
41k
jQuery: Nuts, Bolts and Bling
dougneiner
59
7.1k
Pencils Down: Stop Designing & Start Developing
hursman
116
11k
Transcript
Do(n’t) try this at work Technically, you can do this
Ben Bridts
https://mobile.twitter.com/benbridts/status/1371812381161103362 https://via.benbridts.be/comsum/tweet
https://twitter.com/ben11kehoe/status/1074288317108232192 https://via.benbridts.be/comsum/packrat
https://sprocketfox.io/xssfox/2020/03/05/bigbuckopsworks/ https://via.benbridts.be/comsum/bigbucks
https://github.com/njbmartin/diggydb-nodejs https://via.benbridts.be/comsum/diggy
Using your access key
AWS Management Console
https://docs.aws.amazon.com/cli/latest/reference/iam/delete-login-profile.html
https://docs.aws.amazon.com/IAM/latest/UserGuide/console_controlling-access.html More info: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-custom-url.html
None
None
None
None
https://signin.aws.amazon.com/federation? Action=login& Issuer=a+python+script& Destination=https%3A%2F%2Fconsole.aws.amazon.com%2F& SigninToken=ow8X9[...]XAyan
Do • Simplify switching between accounts • Start a new
browser for every account Don’t • Use credentials from EC2 / Lambda / CodeBuild / … • Block console access
Infinite Storage
AWS CloudShell
https://aws.amazon.com/cloudshell/faqs/
https://aws.amazon.com/cloudshell/faqs/
https://signin.aws.amazon.com/switchrole https://docs.aws.amazon.com/cli/latest/reference/sts/assume-role.html
None
None
https://botocore.amazonaws.com/v1/documentation/api/latest/reference/loaders.html
https://github.com/iann0036/vscode-aws-cloudshell https://via.benbridts.be/comsum/vscode
Reducing Errors The easy way
Amazon CloudWatch
None
https://…execute-api.eu-west-1.amazonaws.com/Prod/run https://…execute-api.eu-west-1.amazonaws.com/Prod/run?fail=y
None
None
None
https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazoncloudwatch.html
None
Thank you! Ben Bridts
[email protected]
@BenBridts | @WeAreCloudar www.cloudar.be