Issue #145
Monday · February 26, 2024
๐ฅ Palate Cleanser
Hey folks,Happy New Year! ๐พ Ready to cook up some cloud security masterpieces in 2024?
Let's start this year with a flavor-packed menu of insights and updates.
As your head chef in the AWS Security kitchen, I'm always looking to spice things up. Your appetite for knowledge and your feedback are the secret ingredients that make our community sizzle.
Now, for the main course in this issue: I've whipped up a special HTTPS redirect recipe. It's like transforming a simple sub.domainA.tld into a gourmet other.domainB.tld, seasoned with CloudFront Function and the fresh-out-of-the-oven CloudFront KeyValueStore.
So, tie your apron, sharpen your skills, and let's get ready to feast on the cloud's delicious offerings in 2024!
Here's to a year of succulent solutions and cloud culinary adventures! ๐ณ
Bon Appรฉtit!
Victor
๐ Chef's selections
๐ฅ AWS security blogs
๐ Reddit threads on r/aws
- "How are you mitigating the risk of a rogue AWS engineer accessing our data or damaging the RDS instance?"
- MFA not working and card expired, stuck - any advice?
- AWS Glue to Redshift
- Security groups outbound
- Management of RDS IAM authentication for DBAs
- Fargate/CVE
- 401 Unauthorized Error after Re-Login with AWS Cognito and ALB
- Identity-based policies vs Resource-based policies
๐ง IAM permission changes
๐ช API changes
๐น IAM managed policy changes
Managed Policy changed since last week: 10- AWSApplicationMigrationServiceEc2InstancePolicy
- AWSArtifactReportsReadOnlyAccess
- AWSElasticDisasterRecoveryNetworkReplicationPolicy
- AWSElasticDisasterRecoveryServiceRolePolicy
- ๐ฉ AWSServiceRoleForAmazonEKSNodegroup
- ๐ฉ AmazonAthenaFullAccess
- ๐ฉ AmplifyBackendDeployFullAccess
- CloudFrontFullAccess
- CloudFrontReadOnlyAccess
- ๐ฉ ReadOnlyAccess
๐ค Powered by MAMIPย | ๐ฉ Sensitive IAM Actions included
โ CloudFormation resource changes
๐ฎ Amazon Linux vulnerabilities
This section will show you the latest (Important and Critical) CVEs on Amazon Linux.No CVE since last issue.
