#announcements (2019-04)

hey everyone give a warm welcome to @Elmer! Good to have you here

Hello

Welcome @Elmer!

hey everyone give a warm welcome to @Kenneth V! Good to have you here

Hi All , How is everybody using terraform in a version controlled , continuous delivery way. I know there is the option to use Atlantis and some blogs about how to achieve this. I think in real world scenarios it is difficult to follow this pattern.

I am interested to hear experiences from fellow DevOpers . Specifically how drift can be corrected with infrastructure config.

hey everyone give a warm welcome to @JoshHam! Good to have you here

hey everyone give a warm welcome to @Anthony Giza! Good to have you here

Have you signed up for our Newsletter? It covers everything on our technology radar. Receive updates on what we’re up to on GitHub as well as awesome new projects we discover.

Has anyone noticed dockerised applications behaving different when using localhost vs IP

I have an app that works on localhost:80 but when using an IP it behaves differently. Really frustrating, because obviously when on a server the users will be using the ‘ip’ instead of ‘localhost’

Let’s move to #docker

Oh.. I didn’t see that

I’m already in it. Thanks

There are no events this week

hey everyone give a warm welcome to @EdBizarro! Good to have you here

hey everyone give a warm welcome to @k911! Good to have you here

hey everyone give a warm welcome to @Paul Calabro! Good to have you here

hello!

welcome @Paul Calabro

So I thought of somewhat interesting way that a bad actor could bypass 2FA and I’m curious if this of interest to anyone else.

Scenario:

A bad actor compromises a machine in an untrusted network and quietly imposes these SSH settings on a user (or maybe they’re already in place b/c the user put them there for a reason– e.g. Ansible):

Host *
  ControlMaster auto
  ControlPath ~/.ssh/control-sockets/%C
  ControlPersist yes
  ServerAliveCountMax 5
  ServerAliveInterval 60

…and then they wait for a user to connect to a host behind a bastion using 2FA. Once they do, the bad actor can then reuse that socket over and over again unbeknownst to the user to create sessions using that established connection. And then, course, pivot from there.

AFAIK, unless the bastion server modifies the MaxSessions value, the default number of sessions is 10.

What are your thoughts on this?

I opened up an issue here: https://github.com/cloudposse/bastion/issues/42

But I wanted to see if there was any interest in fixing this before I submitted anything.

Let’s move to #bastion

sounds good

hey everyone give a warm welcome to @Patrick Valsecchi! Good to have you here

hey everyone give a warm welcome to @Mads Hvelplund! Good to have you here

Hello!

hey everyone give a warm welcome to @SeB! Good to have you here

hello everyone, is there any way to invoke lambda func, when add/remove user into AWS account ?

@Maxim Tishchenko let’s move to… #aws

hey everyone give a warm welcome to @Edd! Good to have you here

hey everyone give a warm welcome to @Just4Testing! Good to have you here

hey everyone give a warm welcome to @David Nolan! Good to have you here

hey everyone give a warm welcome to @phanindra bolla! Good to have you here

hey everyone give a warm welcome to @ComanDante! Good to have you here

hey everyone give a warm welcome to @Chris DiPesa! Good to have you here

hey everyone give a warm welcome to @Zac Petterd! Good to have you here

hey everyone give a warm welcome to @Rami Rantala! Good to have you here

hey everyone give a warm welcome to @Vladimir S.! Good to have you here

hey everyone give a warm welcome to @leonardo.miranda! Good to have you here

hey everyone give a warm welcome to @Humberto Rovida! Good to have you here

hey everyone give a warm welcome to @Zaven! Good to have you here

hey everyone give a warm welcome to @Ufou! Good to have you here

hey everyone give a warm welcome to @renaldrozario! Good to have you here

Have we helped you in some way? We’d love to know! If you could leave us a testimonial it would make our day.

hey everyone give a warm welcome to @Andrew Nazarov! Good to have you here

There are no events this week

hey everyone give a warm welcome to @Eddie Wizelman! Good to have you here

hey everyone give a warm welcome to @Noah Kernis! Good to have you here

hey everyone give a warm welcome to @Alex Co! Good to have you here

hey everyone give a warm welcome to @Robert Summers! Good to have you here

hey everyone give a warm welcome to @erik-stephens! Good to have you here

• Are you hiring? Post a link to your job ad in our #jobs channel.

• Looking for work? Let everyone know by promoting what you do in the #jobs channel by sharing your LinkedIn profile and GitHub links.

• Are you a freelancer/consultant? Feel free to engage in self-promotion in the #jobs channel by sharing a link to your website and a tidbit about what you do.

Is CloudPosse part of the Amazon Partner Network? (APN)

I am, if you’re wondering generally and not about CP

@Alex Siegman we are registered with the APN, but not an advanced partner from “tier” perspective; that said, I think we run circles around most advanced partners.

hey everyone give a warm welcome to @Rich Allen! Good to have you here

hey everyone give a warm welcome to @Stephen Lawrence! Good to have you here

welcome @Stephen Lawrence! I know Will & Brady from a ways back

hey everyone give a warm welcome to @mohamed.naseer! Good to have you here

hey everyone give a warm welcome to @Kevin Gimbel! Good to have you here

hey everyone give a warm welcome to @Erik R. Hanson! Good to have you here

hey everyone give a warm welcome to @Animesh Sinsinwal! Good to have you here

hey everyone give a warm welcome to @Miguel! Good to have you here

hey everyone give a warm welcome to @Nicolas H! Good to have you here

hey everyone give a warm welcome to @Steve Miller! Good to have you here

hey everyone give a warm welcome to @Raju! Good to have you here

Hello

I wanted to ask if someone can help me with the terraform module for iam-role creation

i think you can find it in the #terraform channel

Will do, thanks

hey everyone give a warm welcome to @Jake! Good to have you here

Did you know we have a comprehensive public slack archive of all public channels? This is a great place to look if you need to reference past discussions or search for previous questions and answers.

hey everyone give a warm welcome to @Issif! Good to have you here

hey everyone give a warm welcome to @Matthieu! Good to have you here

hey everyone give a warm welcome to @kajanth mayooranathan! Good to have you here

There is 1 event this week

hey everyone give a warm welcome to @Travis Kamen! Good to have you here

hey everyone give a warm welcome to @GP! Good to have you here

hey everyone give a warm welcome to @Robert Woodcock! Good to have you here

hey everyone give a warm welcome to @Elisiano Petrini! Good to have you here

hey everyone give a warm welcome to @Aaron Gershman! Good to have you here

hey everyone give a warm welcome to @reoring! Good to have you here

hey everyone give a warm welcome to @Eugene Korekin! Good to have you here

hey everyone give a warm welcome to @Gabor Csikos! Good to have you here

hey everyone give a warm welcome to @Luiz Figueiredo! Good to have you here

hey everyone give a warm welcome to @Johann Gelhorn! Good to have you here

hey everyone give a warm welcome to @Jonathan Le! Good to have you here

@Jonathan Le !! Welcome :-)

hey everyone give a warm welcome to @Brian! Good to have you here

hey everyone give a warm welcome to @Auktavian Garrett! Good to have you here

hey everyone give a warm welcome to @Andrii Zavadskyi! Good to have you here

hey everyone give a warm welcome to @vishnu.shukla! Good to have you here

Hey! How would I be able to use the value for namespace in my chart?

@Brian is this regarding #helmfile or just #helm in general?

#helmfile

Oh, I thought this was the Helmfile room. Sorry.

:-) no prob! We have channels for all the various tools that we use

hey everyone give a warm welcome to @Jason Walsh! Good to have you here

hey everyone give a warm welcome to @kris inampudi! Good to have you here

hey everyone give a warm welcome to @Pandian! Good to have you here

hey everyone give a warm welcome to @Stephen Gibbs! Good to have you here

hey everyone give a warm welcome to @smatar! Good to have you here

welcome @smatar!

hey everyone give a warm welcome to @Mike Zazon! Good to have you here

There is 1 event this week

hey everyone give a warm welcome to @Stefan Angelov! Good to have you here

hey everyone give a warm welcome to @David Trebicky! Good to have you here

hey everyone give a warm welcome to @Francis Kayiwa! Good to have you here

hey everyone give a warm welcome to @Joan Hermida! Good to have you here

kudos again to this slack channel. Cloud Posse being an open source DevOps hub is really a great thing. I often talk to other devops peeps and mention cloud posse and this culture

thanks @rms1000watt really appreciate it

hey everyone give a warm welcome to @ankur.gurha! Good to have you here

Just in case anyone find it useful.

AWS Management Console down :warning: without region #aws #outage :aws: (https://status.aws.amazon.com/) • (link: https://us-west-2.console.aws.amazon.com/console) us-west-2.console.aws.amazon.com/console works :heavy_check_mark: • (link: https://us-east-2.console.aws.amazon.com/console) us-east-2.console.aws.amazon.com/console works :heavy_check_mark: • (link: https://us-east-1.console.aws.amazon.com/console) us-east-1.console.aws.amazon.com/console does NOT work :negative_squared_cross_mark: (link: https://console.aws.amazon.com/console/home) console.aws.amazon.com/console/home :disappointed:

So you can basically by-pass the error specifying the console region in the access url. To hit a specific service in us-east-1 you can use the service URL, eg: https://us-east-1.console.aws.amazon.com/ec2/v2/home?region=us-east-1#Home:

awsome info thanks!

hey everyone give a warm welcome to @Mike Pfaffroth! Good to have you here

hey everyone give a warm welcome to @abhilashshettigar! Good to have you here

hey everyone give a warm welcome to @chirag kalal! Good to have you here

hey everyone give a warm welcome to @Lee Skillen! Good to have you here

o/ mornin’ all

\o

ü/

welcome @Lee Skillen

hey everyone give a warm welcome to @Amanda Heironimus! Good to have you here

Thanks everyone - Didn’t have time to reply yesterday, but thank you for the welcome.

hey everyone give a warm welcome to @Anton! Good to have you here

hey everyone give a warm welcome to @Govardhanreddy! Good to have you here

hey everyone give a warm welcome to @Alex Hubner! Good to have you here

hey everyone give a warm welcome to @Ameya Agashe! Good to have you here

hey everyone give a warm welcome to @Peter Oates! Good to have you here

hey everyone give a warm welcome to @Michael Popoola! Good to have you here

There is 1 event this week

hey everyone give a warm welcome to @Gideon Williams! Good to have you here

hey everyone give a warm welcome to @Andy Litzinger! Good to have you here

hey everyone give a warm welcome to @Bill Hegazy! Good to have you here