-
This article series is based on a presentation I gave and will present at an AWS User Group soon. Turning this into a blog article means others can refer to this content should the presentation be a bit too fast-paced. Review of AWS Control Tower At it’s core, AWS Control Tower is a service that […]
-
Over the weekend I built a discord bot, this is a quick post on how to set-up the AI-enabled cog. Some backstory – I run a discord server with some mates, and we occasionally share some wizard memes, like the one below: The Plan What if, instead of creating a meme for every spell we […]
-
Let me share a few Ansible tips I’ve learned over the years and how you can use them to improve your playbooks. In particular, we’ll cover using: Ansible Collections When we learn about Ansible, we often jump straight to roles. Roles allow us to develop repeatable and accessible playbooks we can reuse for various purposes. […]
-
In part 1 of this series, we looked at protecting our AWS environment from external access, minimising our use of static credentials and enforcing least privilege across our roles, users and policies. Now that we’ve secured our environment from an access perspective, we can work on securing our software pipelines against attack. Continuous Integration and […]
-
Lately, there have been a lot of articles and reports in the media about security breaches. Poisoning the software supply chain has become a popular attack vector in large-scale cyber attacks, these attacks aren’t small widespread attacks like a worm, they are reputationally and financially devastating, stealing data, leaking or selling it, and holding the […]
-
I got the opportunity to attend the AWS Sydney Summit 2023 courtesy of my work, so I want to share a few of my learnings. I’ve been migrating my blog, and as such, I wanted to add some more to this article. So, I’ll be comparing the topics discussed at the Sydney Summits in 2023 […]
-
When working on an AWS Terraform project, especially a complex one you developed over time, you might run into a few issues, in particular, with the state: It’s wise to plan your Terraform project up-front, or at least have a strategy for managing it going forward. Using a tool like Terragrunt can help alleviate some […]
-
Everyone loves GitHub Actions. It’s super easy to use, it’s easy to extend, tons of people have written easy-to-use extensions for it. There’s just one problem… How can we deploy to AWS securely using another CI/CD platform? Well, fortunately, that problem has been solved using OIDC. Understanding OIDC Why static credentials suck Static credentials used […]
-
This is a continuation of my Twitch Stream on Observability with Grafana, where I introduced AWS Grafana and how you can use it to improve your system’s observability. So, if you haven’t watched that yet, watch it so you can follow along here. Not too long ago, AWS extended it’s monitoring and observability offerings to […]
-
Recently, I’ve been working on a storage migration for a customer who wants to use AWS FSx with their existing Windows Distributed Filesystem (DFS) to act as a highly-available backup server, should the local file servers go offline. Windows DFS is a set of services offered on Windows Server that allows you to organise multiple […]