let’s proceed in our journey of the AWS Lambda function, which will copy an EC2’s AWS Tags to all EBS volumes, attached to it.
In the first part, AWS: Lambda — copy EC2 tags to its EBS, part 1 — Python and boto3, we wrote a Python script that can…
We have an AWS Elastic Kubernetes Service cluster, which has a few WorkerNode Groups that were created as AWS AutoScaling Groups by using the eksctl, see the AWS Elastic Kubernetes Service: a cluster creation automation, part 2 – Ansible, eksctl for more details.
The WorkerNode Group configuration for the eksctl…
We have Github runners in our AWS Elastic Kubernetes service cluster, that are used to build Docker images and deploy them with Helm or ArgoCD.
On the first helm install run in a Github runner's Pod, we are getting the "x509: certificate signed by unknown authority" error:
$ helm --kube-apiserver=https://kubernetes.default.svc.cluster.local…
This post isn’t an overview of the AWS Cost Explorer service, but just a quick example of how to detect costs for your AWS account and its services.
So, when I came back from the vacation, I noticed that we’ve paid more than usually for the AWS CloudWatch for August…
AWS Lambda allows running a code without the need to create and manage servers, also known as the serverless approach.
AWS Lambda will determine how much CPU and memory is needed to run a function, and when it’s necessary it will perform autoscaling.
A code to be running is organized…
A confidential data leak such as RDS keys or passwords to a Git repository, even if it is a private Github repository, is a very bad thing and it’s good to check your repositories to know if any developer pushed a commit with such data.
Contents
To access a database server, that has no public access (as it must be — access only inside an AWS VPC), Tableau suggests using its tool called Tableau Bridge.
The idea is to have a Bridge service running in a network, which has access to a database server via its…
One of mine website stopped working with the “Connection reset” error.
NGINX configs seem to be correct, and other sites on the same server are working.
NGINX also gave nothing, no errors, PHP-FPM also are good.
Let’s check the website with the curl:
$ curl -Iv https://example.setevoy.org.ua/
* Trying 139.59.205.180:443…
* Connected…Private Hosted Zone in AWS Route53 allows to limit access to DNS records of a domain, thus making it inaccessible for the DNS Enumeration (or DNS brute-force), when an attacker checks for available records in a domain to know endpoints list to check them for vulnerabilities.
