p0bailey

env/
venv/
*.pyc
db.sqlite3

p0bailey

terraform apply    -var-file=../../aws.tfvars
aws_iam_role.SecurityMonkeyInstanceProfile: Creating...
  arn:                "" => "<computed>"
  assume_role_policy: "" => "{\n      \"Version\": \"2012-10-17\",\n      \"Statement\": [\n        {\n          \"Effect\": \"Allow\",\n          \"Principal\": {\n            \"Service\": \"ec2.amazonaws.com\"\n          },\n          \"Action\": \"sts:AssumeRole\"\n        }\n      ]\n    }"
  name:               "" => "SecurityMonkeyInstanceProfile"
  path:               "" => "/"
  unique_id:          "" => "<computed>"
aws_iam_role.SecurityMonkeyInstanceProfile: Creation complete
aws_iam_role.SecurityMonkey: Creating...
  arn:                "" => "<computed>"

p0bailey

# -*- mode: ruby -*-
# vi: set ft=ruby :

# Vagrantfile API/syntax version. Don't touch unless you know what you're doing!
VAGRANTFILE_API_VERSION = "2"

Vagrant.configure(VAGRANTFILE_API_VERSION) do |config|

  config.vm.provision :hosts do |provisioner|
  provisioner.autoconfigure = true

p0bailey

{
    "body": {
        "key": {
            "eldest_kid": "0120b09faec5a707c96c64c74fd2531cd384e00490422fb6e7fc5249adf8ff1228eb0a",
            "host": "keybase.io",
            "kid": "0120b09faec5a707c96c64c74fd2531cd384e00490422fb6e7fc5249adf8ff1228eb0a",
            "uid": "5f7e6bea1f97ceb2f1d0916f9054d119",
            "username": "pbailey"
        },

p0bailey

resource "aws_iam_group" "ec2Admins" {
  name = "ec2Admins"
}

resource "aws_iam_group_policy" "force_MFA_on_apikeys_policy" {
  name       = "force_MFA_on_apikeys_policy"
  group      = "${aws_iam_group.ec2Admins.id}"
  depends_on = ["aws_iam_group.ec2Admins"]

  policy     = <<EOF

p0bailey

resource "aws_iam_group" "ec2Admins" {
  name = "ec2Admins"
}

resource "aws_iam_group_policy" "force_MFA_on_apikeys_policy" {
  name       = "force_MFA_on_apikeys_policy"
  group      = "${aws_iam_group.ec2Admins.id}"
  depends_on = ["aws_iam_group.ec2Admins"]

  policy     = <<EOF

p0bailey

resource "aws_s3_bucket" "bucket" {
  bucket = "somethingVaultTest"
  acl    = "private"

  tags {
    Name        = "vault-demo"
    Environment = "Demo"
  }
}

p0bailey

Amazon SQS FAQs

Overview

Q: What are the benefits of Amazon SQS over homegrown or packaged message queuing systems?

Amazon SQS provides several advantages over building your own software for managing message queues or using commercial or open-source message queuing systems that require significant up-front time for development and configuration.

These alternatives require ongoing hardware maintenance and system administration resources. The complexity of configuring and managing these systems is compounded by the need for redundant storage of messages that ensures messages are not lost if hardware fails.

p0bailey

General S3 FAQs

Q: What is Amazon S3?

Amazon S3 is object storage built to store and retrieve any amount of data from anywhere on the Internet. It’s a simple storage service that offers an extremely durable, highly available, and infinitely scalable data storage infrastructure at very low costs.

Q: What can I do with Amazon S3?

p0bailey

General

Q: Are Amazon EBS volume and snapshot ID lengths changing in 2018?

Yes, please visit the EC2 FAQ page for more details.

Q: What happens to my data when an Amazon EC2 instance terminates?

Unlike the data stored on a local instance store (which persists only as long as that instance is alive), data stored on an Amazon EBS volume can persist independently of the life of the instance. Therefore, we recommend that you use the local instance store only for temporary data. For data requiring a higher level of durability, we recommend using Amazon EBS volumes or backing up the data to Amazon S3. If you are using an Amazon EBS volume as a root partition, set the Delete on termination flag to "No" if you want your Amazon EBS volume to persist outside the life of the instance.