Ends in
00
days
00
hrs
00
mins
00
secs
ENROLL NOW

💝 Valentine's Sale! Get 30% OFF Any Reviewer. Use coupon code: PASSION-4-CLOUD & 10% OFF Store Credits/Gift Cards

Others

Home » Others » Page 19

Enhancing S3 Bucket Security by Prohibiting Uploads of Unencrypted Objects

2023-05-22T01:34:06+00:00

Amazon S3 is a widely used object storage service that allows users to store and retrieve large amounts of data. S3 is known for its scalability, durability, and cost-effectiveness, making it an ideal choice for many organizations. However, as with any cloud-based service, security is a crucial concern. One way to enhance the security of S3 buckets is by prohibiting the upload of unencrypted objects. In this article, we will explore why this is important and how it can be implemented. Why Prohibit Uploads of Unencrypted Objects? Unencrypted objects in S3 buckets can be vulnerable to data breaches, which can [...]

Enhancing S3 Bucket Security by Prohibiting Uploads of Unencrypted Objects2023-05-22T01:34:06+00:00

AWS Lambda: Synchronous vs Asynchronous Invocation

2024-07-17T03:30:08+00:00

You can invoke a Lambda function in two ways. Synchronous Invocation The first one is called Synchronous invocation, which is the default mode. Synchronous invocation is pretty straightforward. When you invoke a function synchronously, AWS Lambda waits until the function is done processing, then returns the result. Let’s see how this works through the following example: The diagram illustrates a Lambda function-backed API that is managed by API Gateway. When API Gateway receives a GET request from the /getOrder resource, it invokes the getOrder function. The function receives an event containing the payload, processes it, and then returns the result. [...]

AWS Lambda: Synchronous vs Asynchronous Invocation2024-07-17T03:30:08+00:00

Connecting your Lambda Function to a Private Database

2023-05-15T02:11:53+00:00

If you want your Lambda function to interact with resources (e.g., RDS database, EC2 instance) inside a private subnet, you won't be able to do so by default. The reason for this is that Lambda functions live in an isolated and secured VPC managed by AWS. This is why when you create a Lambda function, you don’t go through any networking configurations (VPC, subnet, ENIs), unlike when creating EC2 instances. Also, you cannot establish a VPC peering connection between the VPC where Lambda functions are run and the VPC where your private resources are located because the former is not [...]

Connecting your Lambda Function to a Private Database2023-05-15T02:11:53+00:00

How AWS IAM Handles Conflicting IAM Policies

2023-05-03T03:39:25+00:00

Overview When a user attempts an action in AWS, such as launching an EC2 instance or listing S3 buckets, AWS evaluates all involved IAM policies to determine whether to grant the request. Since IAM policies can be associated with various types of identities, the hierarchy of these identities influences the final permissions for a user. AWS IAM Policy Evaluation Flow Let’s break down the process of how AWS evaluates a request using the simplified version of the AWS flow chart below: 1. Default Deny AWS denies a request by default. For example, if your IAM user has no policies attached [...]

How AWS IAM Handles Conflicting IAM Policies2023-05-03T03:39:25+00:00

Understanding the IAM:PassRole Permission

2023-08-24T02:44:43+00:00

Introduction Many AWS services often require the use of an IAM role to execute actions on your behalf. For example, when you create a Lambda function, you assign an execution role to it. AWS can generate one for you automatically, and then you define the permissions you want it to have after. Most of the time, that's the case. However, there are instances when you might choose to associate an existing IAM role. In practice, we often concentrate on which permissions a user is allowed to perform and which are off-limits. But what's often overlooked are the IAM roles a [...]

Understanding the IAM:PassRole Permission2023-08-24T02:44:43+00:00

Different Ways of Passing Parameters Securely in CloudFormation

2023-04-27T12:27:15+00:00

Introduction When writing CloudFormation templates, it's a security best practice to avoid hardcoding sensitive info, like client secrets, API keys, or passwords. Sharing templates with hardcoded details by mistake can put your infrastructure and data at risk. In this article, we'll explore different secure methods to pass parameters in CloudFormation templates. Using the NoEcho Attribute To avoid hardcoding parameters in your template, you can define them during stack creation using the Parameters section. However, these values will still be visible in plaintext in the Console. To mask critical data, consider using the NoEcho attribute. The NoEcho attribute offers a simple [...]

Different Ways of Passing Parameters Securely in CloudFormation2023-04-27T12:27:15+00:00

How to Set Up Alerts Rules and Action Groups in Azure Monitor

2023-04-10T04:23:35+00:00

In this article, we’ll learn how to create action groups and alert rules to automatically monitor our infrastructure and take automated actions based on certain conditions. The service that we’ll use for this tutorial is Azure Monitor. Alerts in Azure Monitor act as a watchdog, constantly monitoring your infrastructure and application for potential problems. It alerts you before users experience any problems by sending you alerts when something is wrong with your system. This way, you can address the problem quickly and avoid affecting users. How to Setup Action Groups Action Groups are a set of actions that you specify [...]

How to Set Up Alerts Rules and Action Groups in Azure Monitor2023-04-10T04:23:35+00:00

How Can I Learn AWS for FREE this 2023 (Beginner’s Guide)

2023-04-11T12:18:33+00:00

For those interested in cloud computing or seeking to upgrade their skills, gaining knowledge of AWS can be a highly beneficial asset. Since AWS is currently the leading cloud service provider, there are numerous resources available, such as free online courses and documentation, which make starting with AWS both an uncomplicated and approachable process. If your goal is to become an AWS certified and you don’t have any experience yet, then read about AWS Certified Cloud Practitioner here. Here are 5 free AWS resources that you can leverage to kickstart your career in cloud computing: 1. AWS Ramp-Up Guides Before [...]

How Can I Learn AWS for FREE this 2023 (Beginner’s Guide)2023-04-11T12:18:33+00:00

Default Host Management Configuration on AWS Systems Manager

2023-04-10T03:01:04+00:00

AWS Systems Manager’s Fleet Manager is a useful tool for managing Amazon EC2 instances on your account. It allows you to establish a private session to your instances, view detailed information about the instance, run automation such as patch installations, or execute specific Run commands to the instance’s operating system. It can also be used to manage on-premises servers or virtual machines. Using AWS Systems Manager tools requires that an IAM role is created and attached as an instance profile to your EC2 instances. It also requires that the Systems Manager Agent is installed on the instances. The Systems Manager [...]

Default Host Management Configuration on AWS Systems Manager2023-04-10T03:01:04+00:00

My DVA-C02 AWS Developer Associate Exam Experience

2023-04-26T07:30:31+00:00

A few weeks ago, I took and passed the latest AWS Certified Developer Associate exam, DVA-C02. If you've already cleared DVA-C01 and intend to recertify, note that you can no longer book DVA-C01 exams. I suggest checking out this article I wrote a couple of months ago. This breaks down the changes you need to be aware of, and I’ve also shared my expectations for the DVA-C02 exam.  In this post, I'll be sharing my experience on the exam, discussing my thoughts on it, and providing tips and tricks that can hopefully help you get through it. Is DVA-C02 more [...]

My DVA-C02 AWS Developer Associate Exam Experience2023-04-26T07:30:31+00:00

AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Upskill and earn over $150,000 per year with an AWS, Azure, or GCP certification!

Follow us on LinkedIn, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try!