Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Do(n’t) try this at work - Technically, you _ca...
Search
Ben Bridts
May 27, 2021
0
150
Do(n’t) try this at work - Technically, you _can_ do this
Ben Bridts
May 27, 2021
Tweet
Share
More Decks by Ben Bridts
See All by Ben Bridts
The Hidden Costs of Managed Open Source
benbridts
0
3
re:Invent re:Cap 2023: Evolving your architecture
benbridts
0
37
A closer look at new ways to manage access - EKS Pod Identiy and S3 Access Grant
benbridts
0
5
From ‘huh?’ to privilege escalation
benbridts
0
13
re:Invent re:Cap - Removing Heavy Lifting
benbridts
0
70
Policy as Code: Putting best practices in your repository
benbridts
0
140
(Don't) try this at work - Lightning Talk
benbridts
0
110
AWS Systems Manager
benbridts
1
91
Mistakes I made when writing Infrastructure as Code, and how to avoid them
benbridts
0
55
Featured
See All Featured
Let's Do A Bunch of Simple Stuff to Make Websites Faster
chriscoyier
502
140k
Building a Scalable Design System with Sketch
lauravandoore
459
32k
The Illustrated Children's Guide to Kubernetes
chrisshort
47
48k
How To Stay Up To Date on Web Technology
chriscoyier
786
250k
Producing Creativity
orderedlist
PRO
340
39k
Fireside Chat
paigeccino
31
2.9k
Scaling GitHub
holman
458
140k
A Modern Web Designer's Workflow
chriscoyier
692
190k
Building Your Own Lightsaber
phodgson
101
6k
How to Ace a Technical Interview
jacobian
274
23k
How GitHub (no longer) Works
holman
310
140k
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
stephaniewalter
278
13k
Transcript
Do(n’t) try this at work Technically, you can do this
Ben Bridts
https://mobile.twitter.com/benbridts/status/1371812381161103362 https://via.benbridts.be/comsum/tweet
https://twitter.com/ben11kehoe/status/1074288317108232192 https://via.benbridts.be/comsum/packrat
https://sprocketfox.io/xssfox/2020/03/05/bigbuckopsworks/ https://via.benbridts.be/comsum/bigbucks
https://github.com/njbmartin/diggydb-nodejs https://via.benbridts.be/comsum/diggy
Using your access key
AWS Management Console
https://docs.aws.amazon.com/cli/latest/reference/iam/delete-login-profile.html
https://docs.aws.amazon.com/IAM/latest/UserGuide/console_controlling-access.html More info: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-custom-url.html
None
None
None
None
https://signin.aws.amazon.com/federation? Action=login& Issuer=a+python+script& Destination=https%3A%2F%2Fconsole.aws.amazon.com%2F& SigninToken=ow8X9[...]XAyan
Do • Simplify switching between accounts • Start a new
browser for every account Don’t • Use credentials from EC2 / Lambda / CodeBuild / … • Block console access
Infinite Storage
AWS CloudShell
https://aws.amazon.com/cloudshell/faqs/
https://aws.amazon.com/cloudshell/faqs/
https://signin.aws.amazon.com/switchrole https://docs.aws.amazon.com/cli/latest/reference/sts/assume-role.html
None
None
https://botocore.amazonaws.com/v1/documentation/api/latest/reference/loaders.html
https://github.com/iann0036/vscode-aws-cloudshell https://via.benbridts.be/comsum/vscode
Reducing Errors The easy way
Amazon CloudWatch
None
https://…execute-api.eu-west-1.amazonaws.com/Prod/run https://…execute-api.eu-west-1.amazonaws.com/Prod/run?fail=y
None
None
None
https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazoncloudwatch.html
None
Thank you! Ben Bridts
[email protected]
@BenBridts | @WeAreCloudar www.cloudar.be