Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Do(n’t) try this at work - Technically, you _ca...
Search
Ben Bridts
May 27, 2021
0
190
Do(n’t) try this at work - Technically, you _can_ do this
Ben Bridts
May 27, 2021
Tweet
Share
More Decks by Ben Bridts
See All by Ben Bridts
Using IAM Roles Anywhere for free
benbridts
0
2
The Hidden Costs of Managed Open Source
benbridts
0
17
re:Invent re:Cap 2023: Evolving your architecture
benbridts
0
55
A closer look at new ways to manage access - EKS Pod Identiy and S3 Access Grant
benbridts
0
10
From ‘huh?’ to privilege escalation
benbridts
0
25
re:Invent re:Cap - Removing Heavy Lifting
benbridts
0
96
Policy as Code: Putting best practices in your repository
benbridts
0
180
(Don't) try this at work - Lightning Talk
benbridts
0
130
AWS Systems Manager
benbridts
1
140
Featured
See All Featured
Fantastic passwords and where to find them - at NoRuKo
philnash
52
3.4k
For a Future-Friendly Web
brad_frost
180
9.9k
Learning to Love Humans: Emotional Interface Design
aarron
274
40k
Improving Core Web Vitals using Speculation Rules API
sergeychernyshev
19
1.2k
How to Ace a Technical Interview
jacobian
280
23k
YesSQL, Process and Tooling at Scale
rocio
173
14k
Java REST API Framework Comparison - PWX 2021
mraible
33
8.8k
Raft: Consensus for Rubyists
vanstee
139
7.1k
Art, The Web, and Tiny UX
lynnandtonic
303
21k
Building Better People: How to give real-time feedback that sticks.
wjessup
368
20k
Optimising Largest Contentful Paint
csswizardry
37
3.4k
Building a Scalable Design System with Sketch
lauravandoore
462
33k
Transcript
Do(n’t) try this at work Technically, you can do this
Ben Bridts
https://mobile.twitter.com/benbridts/status/1371812381161103362 https://via.benbridts.be/comsum/tweet
https://twitter.com/ben11kehoe/status/1074288317108232192 https://via.benbridts.be/comsum/packrat
https://sprocketfox.io/xssfox/2020/03/05/bigbuckopsworks/ https://via.benbridts.be/comsum/bigbucks
https://github.com/njbmartin/diggydb-nodejs https://via.benbridts.be/comsum/diggy
Using your access key
AWS Management Console
https://docs.aws.amazon.com/cli/latest/reference/iam/delete-login-profile.html
https://docs.aws.amazon.com/IAM/latest/UserGuide/console_controlling-access.html More info: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-custom-url.html
None
None
None
None
https://signin.aws.amazon.com/federation? Action=login& Issuer=a+python+script& Destination=https%3A%2F%2Fconsole.aws.amazon.com%2F& SigninToken=ow8X9[...]XAyan
Do • Simplify switching between accounts • Start a new
browser for every account Don’t • Use credentials from EC2 / Lambda / CodeBuild / … • Block console access
Infinite Storage
AWS CloudShell
https://aws.amazon.com/cloudshell/faqs/
https://aws.amazon.com/cloudshell/faqs/
https://signin.aws.amazon.com/switchrole https://docs.aws.amazon.com/cli/latest/reference/sts/assume-role.html
None
None
https://botocore.amazonaws.com/v1/documentation/api/latest/reference/loaders.html
https://github.com/iann0036/vscode-aws-cloudshell https://via.benbridts.be/comsum/vscode
Reducing Errors The easy way
Amazon CloudWatch
None
https://…execute-api.eu-west-1.amazonaws.com/Prod/run https://…execute-api.eu-west-1.amazonaws.com/Prod/run?fail=y
None
None
None
https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazoncloudwatch.html
None
Thank you! Ben Bridts
[email protected]
@BenBridts | @WeAreCloudar www.cloudar.be