How to safely log into other AWS accounts from within a single AWS login account? The third part of the series goes over the specifics of cross-account assumable IAM roles. Additionally it will cover IAM permissions as well as permission boundaries in great detail. This is going to be the glue that will magically link
How to connect Azure AD Single Sign-On to an AWS account? The second part of the series goes over the specifics, gotchas and the I-spent-so-many-hours-I-should-have-known-earlier. All AWS resources in this example will still be created manually to make things more understandable. Full automation with Terraform and Terragrunt will follow in subsequent posts of this series.
This post shows best-practices when setting up an AWS account landscape from scratch. The main focus will be the types of AWS accounts required for separation of concerns, ease of management and security in various different aspects. It will be followed up with AzureAD single sign-on and full automation via Terraform and how to actually
This series has already covered a few basics about ~/.ssh/config in terms of how to simplify the usage of ssh tunnelling. In order to round this up a bit more, I will add some information you should be aware of about ~/.ssh/config. This is only intended to be a quick reminder about how it is
Now that you are able to create various forward or reverse SSH tunnels with lots of options and even simplify your live with ~/.ssh/config you probably also want to know how make a tunnel persistent. By persistent I mean, that it is made sure the tunnel will always run. For example, once your ssh connection
If you have read the previous article of this series, you should be able to create forward and reverse tunnels with ease. In addition to the previously shown examples I will address some more advanced options for SSH tunnels in general. Article series SSH tunnelling for fun and profit Local vs Remote Tunnel options AutoSSH
When it comes to the art of SSH tunnelling, there are basically two options where to relay a port to.
You can relay a port from a remote server to your local machine with `ssh -L`, hence called local port forwarding. A very basic use-case is if your remote server has a MySQL database daemon listening on port `3306` and you want to access this daemon from your local computer.
The second option is to make your local port available on a remote server (`ssh -R`). Remote port forwarding might come in handy if you for example want to make your local web-server available on a port of a public server, so that someone can quickly check what your local web-server provides without having to deploy it somewhere publicly.
If you are responsible for monitoring lots of drupal sites, the built-in update notification will not be sufficient. check_drupal is a new and drupal version independent nagios plugin which does not require any change on your existing code.
I am always curious about other people’s vim workflow, especially when it comes to project management and goto definitions with ctags. I have now used vim quite some time and want to share my personal workflow. This is about how to create custom local vim configuration files per project and how to manage all of your ctag files easily.