Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Do(n’t) try this at work - Technically, you _ca...

Ben Bridts
May 27, 2021
0
170

Do(n’t) try this at work - Technically, you _can_ do this

Ben Bridts

May 27, 2021
Tweet

More Decks by Ben Bridts

See All by Ben Bridts
The Hidden Costs of Managed Open Source
benbridts
0
7
re:Invent re:Cap 2023: Evolving your architecture
benbridts
0
44
A closer look at new ways to manage access - EKS Pod Identiy and S3 Access Grant
benbridts
0
6
From ‘huh?’ to privilege escalation
benbridts
0
17
re:Invent re:Cap - Removing Heavy Lifting
benbridts
0
77
Policy as Code: Putting best practices in your repository
benbridts
0
160
(Don't) try this at work - Lightning Talk
benbridts
0
120
AWS Systems Manager
benbridts
1
110
Mistakes I made when writing Infrastructure as Code, and how to avoid them
benbridts
0
55

Featured

See All Featured
YesSQL, Process and Tooling at Scale
rocio
171
14k
Reflections from 52 weeks, 52 projects
jeffersonlam
348
20k
Building Better People: How to give real-time feedback that sticks.
wjessup
366
19k
Art, The Web, and Tiny UX
lynnandtonic
298
20k
Java REST API Framework Comparison - PWX 2021
mraible
28
8.4k
The Pragmatic Product Professional
lauravandoore
32
6.4k
Chrome DevTools: State of the Union 2024 - Debugging React & Beyond
addyosmani
3
310
Agile that works and the tools we love
rasmusluckow
328
21k
Why You Should Never Use an ORM
jnunemaker
PRO
55
9.2k
StorybookのUI Testing Handbookを読んだ
zakiyama
28
5.5k
Rails Girls Zürich Keynote
gr2m
94
13k
The Straight Up "How To Draw Better" Workshop
denniskardys
232
140k

Transcript

  1. Do(n’t) try this at work Technically, you can do this

    Ben Bridts

  2. https://mobile.twitter.com/benbridts/status/1371812381161103362 https://via.benbridts.be/comsum/tweet

  3. https://twitter.com/ben11kehoe/status/1074288317108232192 https://via.benbridts.be/comsum/packrat

  4. https://sprocketfox.io/xssfox/2020/03/05/bigbuckopsworks/ https://via.benbridts.be/comsum/bigbucks

  5. https://github.com/njbmartin/diggydb-nodejs https://via.benbridts.be/comsum/diggy

  6. Using your access key

  7. AWS Management Console

  8. https://docs.aws.amazon.com/cli/latest/reference/iam/delete-login-profile.html

  9. https://docs.aws.amazon.com/IAM/latest/UserGuide/console_controlling-access.html More info: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-custom-url.html

  10. None
  11. None
  12. None
  13. None

  14. https://signin.aws.amazon.com/federation? Action=login& Issuer=a+python+script& Destination=https%3A%2F%2Fconsole.aws.amazon.com%2F& SigninToken=ow8X9[...]XAyan

  15. Do • Simplify switching between accounts • Start a new

    browser for every account Don’t • Use credentials from EC2 / Lambda / CodeBuild / … • Block console access

  16. Infinite Storage

  17. AWS CloudShell

  18. https://aws.amazon.com/cloudshell/faqs/

  19. https://aws.amazon.com/cloudshell/faqs/

  20. https://signin.aws.amazon.com/switchrole https://docs.aws.amazon.com/cli/latest/reference/sts/assume-role.html

  21. None
  22. None

  23. https://botocore.amazonaws.com/v1/documentation/api/latest/reference/loaders.html

  24. https://github.com/iann0036/vscode-aws-cloudshell https://via.benbridts.be/comsum/vscode

  25. Reducing Errors The easy way

  26. Amazon CloudWatch

  27. None

  28. https://…execute-api.eu-west-1.amazonaws.com/Prod/run https://…execute-api.eu-west-1.amazonaws.com/Prod/run?fail=y

  29. None
  30. None
  31. None

  32. https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazoncloudwatch.html

  33. None

  34. Thank you! Ben Bridts [email protected] @BenBridts | @WeAreCloudar www.cloudar.be