#office-hours (2024-07)

“Office Hours” are every Wednesday at 11:30 PST via Zoom. It’s open to everyone. Ask questions related to DevOps & Cloud and get answers! https://cloudposse.com/office-hours

Public “Office Hours” are held every Wednesday at 11:30 PST via Zoom. It’s open to everyone. Ask questions related to DevOps & Cloud and get answers!

https://cpco.io/slack-office-hours

Meeting password: sweetops

2024-07-05

2024-07-08

Michael avatar
Michael

Potential discussion item on AWS now supporting CloudShell environments in VPCs: https://aws.amazon.com/about-aws/whats-new/2024/06/aws-cloudshell-amazon-virtual-private-cloud/

AWS CloudShell now supports Amazon Virtual Private Cloud (VPC) - AWS

Discover more about what’s new at AWS with AWS CloudShell now supports Amazon Virtual Private Cloud (VPC)

2

2024-07-11

2024-07-17

Michael avatar
Michael

Not sure if this has been talked about already, but I thought it was a worthwhile read (https://log.martinatkins.me/2024/05/22/terraform-ephemeral-values/)

Ephemeral Values in Terraform

A different approach to sensitive values in Terraform state.

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
06:02:02 PM

@here office hours is starting in 30 minutes! Remember to post your questions here.

Michael Goldsbie avatar
Michael Goldsbie

Can you send me a link to the office hours?

Gabriela Campana (Cloud Posse) avatar
Gabriela Campana (Cloud Posse)

You can register for office hours here: https://cloudposse.com/office-hours/

LIVE DevOps "Office Hours" with Cloud Posseattachment image

Join Cloud Posse LIVE every Wednesday at 11:30 am PT on Zoom.

Roy Sprague avatar
Roy Sprague

On the secrets agent, you have to pass the ssrf token which helps with the chicken and egg deal with accessing secrets. How do you authenticate to the secrets vault without having to have a secret… https://github.com/aws/aws-secretsmanager-agent?tab=readme-ov-file#step-3-retrieve-secrets-with-the-secrets-manager-agent

Gabriela Campana (Cloud Posse) avatar
Gabriela Campana (Cloud Posse)

@Matt Calhoun

Nenna avatar

Links from today’s office hours:

https://www.investing.com/news/stock-market-news/google-near-deal-to-acquire-cybersecurity-startup-wiz-for-23-billion--wsj-3518269 https://github.com/sauljabin/kaskade https://arstechnica.com/security/2024/07/new-blast-radius-attack-breaks-30-year-old-protocol-used-in-networks-everywhere/ https://www.theregister.com/2024/07/12/cisa_broke_into_fed_agency/ https://github.com/taubyte/tau https://labs.leaningtech.com/blog/mini-webvm-your-linux-box-from-dockerfile-via-wasm https://github.com/aws/aws-secretsmanager-agent https://ochagavia.nl/blog/using-s3-as-a-container-registry/ https://techcrunch.com/2024/07/10/aws-app-studio-promises-to-generate-enterprise-apps-from-a-written-prompt/ https://krebsonsecurity.com/2024/07/researchers-weak-security-defaults-enabled-squarespace-domains-hijacks/ https://porkbun.com/ https://porkbun.com/tld/design/?url=https://porkbun.com%3Futm_source%3DGoogle_Search%26utm_medium%3DHomepage_OldDesignCampaign%26gad_source%3D1&coupon=GOOG19A&utm_source=google&utm_medium=cpc&gclid=CjwKCAjw1920BhA3EiwAJT3lSXxG6xXQBeRZQQLVeFS1yTCr5_4o-S5A18CVU-R2qyUL31_D2VTBrRoCqk0QAvD_BwE https://krebsonsecurity.com/2024/07/researchers-weak-security-defaults-enabled-squarespace-domains-hijacks/ https://webvm.io/ https://www.cursor.com/ https://supermaven.com/ https://coderabbit.ai/ https://www.codium.ai/ https://aws.amazon.com/blogs/aws/introducing-amazon-guardduty-malware-protection-for-amazon-s3/ https://docs.k8ssandra.io/ https://d2908q01vomqb2.cloudfront.net/f1f836cb4ea6efb2a0b1b99f41ad8b103eff4b59/2024/05/02/ML-16059_image004.png https://aws.amazon.com/blogs/machine-learning/build-a-serverless-exam-generator-application-from-your-own-lecture-content-using-amazon-bedrock/ https://github.com/kubernetes-sigs/secrets-store-csi-driver https://infisical.com/docs/documentation/guides/local-development https://www.2ndquadrant.com/en/resources/ https://reuters.com/markets/deals/google-backed-software-developer-gitlab-explores-sale-sources-say-2024-07-17/

sauljabin/kaskade
taubyte/tau
Google near deal to acquire cybersecurity startup Wiz for $23 billion - WSJ By Investing.comattachment image

Google near deal to acquire cybersecurity startup Wiz for $23 billion - WSJ

New Blast-RADIUS attack breaks 30-year-old protocol used in networks everywhereattachment image

Ubiquitous RADIUS scheme uses homegrown authentication based on MD5. Yup, you heard right.

CISA broke into US federal agency, wasn't spotted for monthsattachment image

Red team exercise revealed a score of security fails

2024-07-21

Michael avatar
Michael

Fun article on using S3 as a container registry and potential performance benefits: https://ochagavia.nl/blog/using-s3-as-a-container-registry/

Using S3 as a container registryattachment image

For the last four months I’ve been developing a custom container image builder, collaborating with Outerbounds1. The technical details of the builder itself might be the topic of a future article, but there’s something surprising I wanted to share already: you can use S3 as a container registry! You heard it right. All it takes is to expose an S3 bucket through HTTP and to upload the image’s files to specific paths.

1
    keyboard_arrow_up