We have a podcast!
We launched the cloudonaut Podcast! Every other week, Andreas or I prepare the topic of the podcast. The topic is not known to the other one, which results in surprising conversations inspired by our daily work with AWS. Subscribe to the podcast: Appl...Read more
EC2 Instance Connect is an insecure default!
You can also listen to this topic in our podcast! Two months before, Michael wrote about why AWS SSM is a trojan horse. Shortly after that, AWS released EC2 Instance Connect, which is even worse. If you use Amazon Linux 2 or Ubuntu, the chances are h...Read more
Verify SNS messages delivered via HTTP(S) in Node.js
Are you implementing an HTTP/HTTPS endpoint for SNS? If so, you should definetly verify the incoming messages. Otherwise, anyone on the Internet can deliver messages to your HTTP/HTTPS endpoint. Which is a security risk. How do you verify incoming mess...Read more
Review: AWS Backup - A centralized place for managing backups?
You can also listen to this topic in our podcast! AWS releases a new service with a lot of marketing noise. 🎉 You can’t resist, you want to use that new thing now. But soon you discover that: the service is missing essential features the service is...Read more
Calling AppSync GraphQL from Lambda
AWS AppSync provides an easy way to run a GraphQL API that triggers AWS Lambda functions and other AWS services. If you start with AppSync, you likely have existing systems running next to it. Sooner or later, you want to call the GraphQL API from your ...Read more
Dockerizing legacy applications with confd
This blog post is an excerpt of our book Rapid Docker on AWS. A legacy application typically uses files to read configuration parameters. But working with configuration files is cumbersome when building Docker images for the use with ECS (EC2 or Farga...Read more
How to dockerize your PHP application for AWS Fargate?
This blog post is an excerpt of our book Rapid Docker on AWS. The biggest game-changer for Docker on AWS was the announcement of AWS Fargate. Operating Docker containers could not be easier. With AWS Fargate, you launch Docker containers in the cloud...Read more
Analyze CloudWatch Logs like a pro
This post was originally published on the marbot blog. Centralizing the logs from all your systems is critical in a cloud infrastructure. Typical solutions to store and analyze log messages are: Elastic Stack (Elasticsearch + Kibana), Loggly, Splunk, ...Read more
School's Out For Summer
Michael and I have just returned from a trip to France where we enjoyed the sun, the beach, the pool, and - of course - the cheese. We are giving away 25 printed books Amazon Web Services in Action to students who are keen to get started with AWS during...Read more
AWS CloudTrail: your audit log is incomplete
Recently, I was investigating the size of a security breach caused by leaked AWS credentials. The first place to go in such a scenario is the audit log recorded by CloudTrail. When configured correctly, CloudTrail captures the requests to the AWS API an...Read more
Incident Management for Slack
Team up to solve incidents with our chatbot marbot. Never miss a critical alert. Escalate alerts from your AWS infrastructure among your team members. Strong integrations with all parts of your AWS infrastructure: CloudWatch, Elastic Beanstalk, RDS, EC2, ...