Blog

Video course: Exploring AWS Instances, Networking, and Databases

Interested in getting a bit more hands-on with AWS? My first video course prepared with Packt Publishing, exploring server-based (more “classic”) AWS components, like EC2 instances, VPC, RDS, ElasticCache, S3 and even ECS and ECR for running docker containers has been published!

The course is meant for people who have used AWS before and have basic familiarly with their services and would like to get their knowledge onto “the next level” (maybe a more practical one!). I tried to include bits of know-how, various tips and tricks and gotchas that I found during my experience with AWS so far.

If you’re interested, check out the course on Packt Publishing website!

Controlling access to AWS ElasticSearch Service clusters with IAM

When using AWS ElasticSearch Service, you have multiple ways of controlling access to your cluster. AWS Console gives you some pre-set policies you can use, but the ways of access can be confusing. Using the IP-based access, you can allow access from your EC2 instances. But what if you want to access your cluster from a Lambda?

S3 bucket permissions: what does "everyone" mean?

On more than one occasion I have seen S3 bucket policies set for the predefined users groups: “Everyone” and “Any authenticated AWS user”, but rarely has it been done with understanding of what those groups actually mean. So, if you’ve ever set (or thought of setting) permissions for those, please read on.

Comparsion of Ansible and Puppet exams by Red Hat

I had an opportunity to take both exams related to those two most popular automation and configuration management frameworks. Here are some thoughts about the Red Hat’s 405 (Puppet) and 407 (Ansible) exams.

Granting privileges using MAC Framework

FreeBSD’s kernel provides quite sophisticated privilege model that extends the traditional UNIX user-and-group one. Here I’ll show how to leverage it to grant access to specific privileges to group of non-root users.