When you create a new AWS account, one of the best practices to follow is to remove all the default VPC resources. So when the 4.0 AWS Provider released it was really exciting as they included a new option to help destroy this: So going ahead you’d think you could now simply do this. resource […]
AWS
Adding Terraform AWS Cost Policies using Infracost and Checkov
Building cloud infrastructure isn’t cheap but it is extremely accessible. While we apply service control policies to limit the accessibility of certain resources for security purposes, can we apply the same tools to examine cost? The answer is, yes. Infracost is available to provide insights before deployment by examining the Terraform plan. This provides us […]
How To Save Money On AWS
While moving to consumption based spending from a data center can be advantageous for many reasons, companies still need to pay attention to their spends and have the ability to optimize them beyond just through workload management. This article will explore options to help mitigate costs from the procurement level. Compute Savings Plans The lowest […]
9 AWS Security Quick Wins
Security does not have to be cumbersome, expensive, and complex. When working with AWS there are some simple and cost effective actions that can be taken to improve your overall security posture. Delete Default VPCs Deleting default VPCs is both good for security and cost management. Removing unused networks removes the ability for compute resources […]
Secure Access Service Edge (SASE) and Zero Trust Security for Small Businesses and Startups
When designing infrastructure we should minimize the blast radius. We should be designing for isolation and segmentation and limiting ingress and egress. In an ideal state there will be no entrance. Nothing would be allowed in. So is it possible to design a network where this is possible? The answer is, yes. We can design […]
Using Cloudflare for Public AWS Resources Securely
Using Cloudflare is an easy way to add security and performance improvements without breaking the bank. Plans start for free and provide access to the Cloudflare DNS and CDN https://www.cloudflare.com/plans/application-services/. You generally attach a security group with inbound rule 0.0.0.0/0 after setting up your public AWS resource. When using Cloudflare, there is a more secure […]
Facebook URL Sharing of AngularJS Application Hosted on Amazon S3
Building Single Page Applications (SPA) improves the user experience and increases performance of websites for customers. Unfortunately, these applications cause issues when those urls are rendered on social media sites such as Facebook. This article describes the steps necessary to enable Facebook URL sharing of an AngularJS application that is hosted on Amazon S3. Unfortunately, […]