Tracing backward AWS Organization CreateAccount APItl;dr Loosely-coupled services just assume you know your metadata from both directions. Don’t assume you can query for it afterward.Jun 1, 2022Jun 1, 2022
Review your S3 global settings in your AWS accountstldr: turn on “block” all public access on S3 buckets globally in your AWS accounts if you don’t have a reason for public access for s3…May 6, 2022May 6, 2022
S3 Server Side Logging query — Part 1 of Ntl;dr If you want to query a day of your s3 server side logging data and find Athena abort because the underlying s3 bucket throttles read…Apr 22, 2022Apr 22, 2022
EC2 Infrastructure storyTarget audience: folks who are starting to manage multiple EC2 hosts and have yet to deploy a observability platform.Mar 11, 2022Mar 11, 2022
Configure Session Manager access for federated users using SAML session tags — AWS SSO editionWhy does this article exist? If you are using Okta (funny me too), this AWS blog article should be sufficient. However, you need to be…Feb 28, 2022Feb 28, 2022
Email security short introductionI’ve wanted to write up a short introduction to email security. If you are in a well setup shop, email security is not interesting because…Feb 23, 2022Feb 23, 2022
Serverless and AWS IAMI want to write down my recent experience with serverless framework and AWS IAM. Like others, the infrastructure I work on uses terraform…Jan 26, 2022Jan 26, 2022