Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Do(n’t) try this at work - Technically, you _ca...
Search
Ben Bridts
May 27, 2021
0
190
Do(n’t) try this at work - Technically, you _can_ do this
Ben Bridts
May 27, 2021
Tweet
Share
More Decks by Ben Bridts
See All by Ben Bridts
Using IAM Roles Anywhere for free
benbridts
1
5
The Hidden Costs of Managed Open Source
benbridts
0
19
re:Invent re:Cap 2023: Evolving your architecture
benbridts
0
55
A closer look at new ways to manage access - EKS Pod Identiy and S3 Access Grant
benbridts
0
13
From ‘huh?’ to privilege escalation
benbridts
0
26
re:Invent re:Cap - Removing Heavy Lifting
benbridts
0
99
Policy as Code: Putting best practices in your repository
benbridts
0
180
(Don't) try this at work - Lightning Talk
benbridts
0
130
AWS Systems Manager
benbridts
1
140
Featured
See All Featured
How GitHub (no longer) Works
holman
315
140k
Typedesign – Prime Four
hannesfritz
42
2.8k
Improving Core Web Vitals using Speculation Rules API
sergeychernyshev
21
1.2k
VelocityConf: Rendering Performance Case Studies
addyosmani
333
24k
Large-scale JavaScript Application Architecture
addyosmani
514
110k
Music & Morning Musume
bryan
46
6.9k
Fantastic passwords and where to find them - at NoRuKo
philnash
52
3.5k
Rails Girls Zürich Keynote
gr2m
95
14k
How to Think Like a Performance Engineer
csswizardry
27
2.1k
Leading Effective Engineering Teams in the AI Era
addyosmani
7
640
The Cult of Friendly URLs
andyhume
79
6.6k
How STYLIGHT went responsive
nonsquared
100
5.9k
Transcript
Do(n’t) try this at work Technically, you can do this
Ben Bridts
https://mobile.twitter.com/benbridts/status/1371812381161103362 https://via.benbridts.be/comsum/tweet
https://twitter.com/ben11kehoe/status/1074288317108232192 https://via.benbridts.be/comsum/packrat
https://sprocketfox.io/xssfox/2020/03/05/bigbuckopsworks/ https://via.benbridts.be/comsum/bigbucks
https://github.com/njbmartin/diggydb-nodejs https://via.benbridts.be/comsum/diggy
Using your access key
AWS Management Console
https://docs.aws.amazon.com/cli/latest/reference/iam/delete-login-profile.html
https://docs.aws.amazon.com/IAM/latest/UserGuide/console_controlling-access.html More info: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-custom-url.html
None
None
None
None
https://signin.aws.amazon.com/federation? Action=login& Issuer=a+python+script& Destination=https%3A%2F%2Fconsole.aws.amazon.com%2F& SigninToken=ow8X9[...]XAyan
Do • Simplify switching between accounts • Start a new
browser for every account Don’t • Use credentials from EC2 / Lambda / CodeBuild / … • Block console access
Infinite Storage
AWS CloudShell
https://aws.amazon.com/cloudshell/faqs/
https://aws.amazon.com/cloudshell/faqs/
https://signin.aws.amazon.com/switchrole https://docs.aws.amazon.com/cli/latest/reference/sts/assume-role.html
None
None
https://botocore.amazonaws.com/v1/documentation/api/latest/reference/loaders.html
https://github.com/iann0036/vscode-aws-cloudshell https://via.benbridts.be/comsum/vscode
Reducing Errors The easy way
Amazon CloudWatch
None
https://…execute-api.eu-west-1.amazonaws.com/Prod/run https://…execute-api.eu-west-1.amazonaws.com/Prod/run?fail=y
None
None
None
https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazoncloudwatch.html
None
Thank you! Ben Bridts
[email protected]
@BenBridts | @WeAreCloudar www.cloudar.be