Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Do(n’t) try this at work - Technically, you _ca...
Search
Ben Bridts
May 27, 2021
0
160
Do(n’t) try this at work - Technically, you _can_ do this
Ben Bridts
May 27, 2021
Tweet
Share
More Decks by Ben Bridts
See All by Ben Bridts
The Hidden Costs of Managed Open Source
benbridts
0
5
re:Invent re:Cap 2023: Evolving your architecture
benbridts
0
41
A closer look at new ways to manage access - EKS Pod Identiy and S3 Access Grant
benbridts
0
5
From ‘huh?’ to privilege escalation
benbridts
0
15
re:Invent re:Cap - Removing Heavy Lifting
benbridts
0
73
Policy as Code: Putting best practices in your repository
benbridts
0
150
(Don't) try this at work - Lightning Talk
benbridts
0
110
AWS Systems Manager
benbridts
1
100
Mistakes I made when writing Infrastructure as Code, and how to avoid them
benbridts
0
55
Featured
See All Featured
Adopting Sorbet at Scale
ufuk
73
9.1k
Java REST API Framework Comparison - PWX 2021
mraible
28
8.3k
Being A Developer After 40
akosma
87
590k
Music & Morning Musume
bryan
46
6.2k
We Have a Design System, Now What?
morganepeng
51
7.3k
How GitHub (no longer) Works
holman
311
140k
Chrome DevTools: State of the Union 2024 - Debugging React & Beyond
addyosmani
2
170
YesSQL, Process and Tooling at Scale
rocio
169
14k
Code Review Best Practice
trishagee
65
17k
Designing for humans not robots
tammielis
250
25k
How to Ace a Technical Interview
jacobian
276
23k
How To Stay Up To Date on Web Technology
chriscoyier
789
250k
Transcript
Do(n’t) try this at work Technically, you can do this
Ben Bridts
https://mobile.twitter.com/benbridts/status/1371812381161103362 https://via.benbridts.be/comsum/tweet
https://twitter.com/ben11kehoe/status/1074288317108232192 https://via.benbridts.be/comsum/packrat
https://sprocketfox.io/xssfox/2020/03/05/bigbuckopsworks/ https://via.benbridts.be/comsum/bigbucks
https://github.com/njbmartin/diggydb-nodejs https://via.benbridts.be/comsum/diggy
Using your access key
AWS Management Console
https://docs.aws.amazon.com/cli/latest/reference/iam/delete-login-profile.html
https://docs.aws.amazon.com/IAM/latest/UserGuide/console_controlling-access.html More info: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-custom-url.html
None
None
None
None
https://signin.aws.amazon.com/federation? Action=login& Issuer=a+python+script& Destination=https%3A%2F%2Fconsole.aws.amazon.com%2F& SigninToken=ow8X9[...]XAyan
Do • Simplify switching between accounts • Start a new
browser for every account Don’t • Use credentials from EC2 / Lambda / CodeBuild / … • Block console access
Infinite Storage
AWS CloudShell
https://aws.amazon.com/cloudshell/faqs/
https://aws.amazon.com/cloudshell/faqs/
https://signin.aws.amazon.com/switchrole https://docs.aws.amazon.com/cli/latest/reference/sts/assume-role.html
None
None
https://botocore.amazonaws.com/v1/documentation/api/latest/reference/loaders.html
https://github.com/iann0036/vscode-aws-cloudshell https://via.benbridts.be/comsum/vscode
Reducing Errors The easy way
Amazon CloudWatch
None
https://…execute-api.eu-west-1.amazonaws.com/Prod/run https://…execute-api.eu-west-1.amazonaws.com/Prod/run?fail=y
None
None
None
https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazoncloudwatch.html
None
Thank you! Ben Bridts
[email protected]
@BenBridts | @WeAreCloudar www.cloudar.be