I’m so busy doing AWS that I don’t find much time to write about it publicly.

These people do, somehow, and I immensely appreciate their sharing their experience.

This list will grow as I collect more articles.

• A Guide to S3 Logging by Rami McCarthy (2023-03-29). A review of S3 logging techniques. Via Zoph.
• Exploring Amazon VPC Lattice by Ian McKay (2023-04-01). Intro to VPC lattice. Via Zoph.
• A Dismal Guide to AWS Billing by Carlos Bueno (2023-03). This is like a missing manual for the AWS Cost and Usage Report (CUR). In principal it’s a manual for Cloudstats. Via Corey Quinn.
• Cheating is all you need by Steve Yegge (2023-03-23). This changed my mind about large language models (LLMs). Via Corey Quinn.
• https://tomharrisonjr.com/uuid-or-guid-as-primary-keys-be-careful-7b2aa3dcb439
• Consistent Python environments with Poetry and pre-commit hooks by Kenneth J Pronovici. 2020-06-15. I finally discovered the power of pre-commit hooks thanks to this article.
• Is Your Ansible Package Configuration Secure? by Laurence Tennant. 2021-06-02. (Using strace to track which syscalls a process makes so that they may be filtered)
• How to Handle Secrets on the Command Line by Carl Tashian. 2021-03-12.
• https://securingthe.cloud/aws/protecting-amazon-s3-data-from-ransomware/
• https://summitroute.com/blog/2021/08/03/S3_backups_and_other_strategies_for_ensuring_data_durability_through_ransomware_attacks/
• https://summitroute.com/blog/2021/08/05/lightsail_object_storage_concerns-part_1/
• The last S3 security document that we’ll ever need, and how to use it by Jonathan Rault. (2021-08-19) * Terraform Landing Zones for Self-Service Multi-AWS at Eventbrite The Map of Cybersecurity Domains (version2.0) by Henry Jiang (2021-03)
• In defense of blub studies by Ben Kuhn (2020-12)
• Building a secure CI/CD pipeline for Terraform Infrastructure as Code by Chongyang Shi (2021-02-10)
• ALB INGRESS Controller CrashLoopBackOffs in AWS EKS on FARGATE
• Cloud Security Tabletop Exercises by Matt Fuller (2021-01-31)
• Defining your consultancy niche part 2 by Corey Quinn and Scott Piper (2021-01-21)
• How to Enable Logging on Every AWS Service in Existence (Circa 2021) by Matt Fuller (2021-01-4)
• AWS Security Maturity Roadmap by Scott Piper (2021-01-12)
• So you inherited an AWS account by Matt Fuller (2020-04-28)
• Conducting a Cloud Assessment by Chris Farris (2020-06-14)
• A Better Way to SSH in AWS by Charlie Bellmer (2020-02-24)
• SecDevOps: a five-minute explanation (esp) by Chema Alonso (2019-02-11)
• Secure access to 100 AWS accounts by Evan Johnson (2018-03-06)

Summary of So you inherited an AWS account:

1. Get stable access
2. Stop using the root user
3. Update billing information
4. Enable CloudTrail logging and monitoring
5. Clean up IAM entities
6. Locate exposed services
7. Lock down your domains
8. Find expiring certificates
9. Untangle the web of services
10. Monitor and migrate

A Generation Lost in the Bazaar Quality happens only when someone is responsible for it. By Poul-Henning Kamp (2012-08-15).