Cloud – Teza's tech notes

AWS Access Key and Secret Access Key (SIMPLIFIED)

Posted on September 2, 2021September 2, 2021 by admin

There are two ways to access AWS environments.
1) Console Access
2) Programmatic Access

1) Console Access is when you access to AWS portal with your username and password. The GUI interface

2) In Programmatic Access, you are accessing AWS resources using Command lines, Powershell or SDKs.

-> With Programmatic Access, you are accessing using Access Key ID and Secret Access Keys.

Access Key ID and Secret Access Keys are different from your username and password.

When you create your first AWS account, Access Key ID and Secret Access Keys are also created.

It is important to secure or disable them, and not share these Access Key ID and Secret Access Keys otherwise this will give you the root access to your AWS account.

The best practice would be to create a new user and give specific permissions rather than using the root account.

AWS STS Security Token Service is another way to create a temporary, Limited-privileges credentials to IAM users.

To Disable Access Key, navigate to Identity and Access Management (IAM) under Services. > Manage Access Keys.

Disabling this is one way to secure the account, if programmatic access is not required.

Teza

Unprotected Private Key File

Posted on August 26, 2021August 26, 2021 by admin

Warning: Permanently added '192.168.1.1' (RSA) to the list of known hosts.
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@         WARNING: UNPROTECTED PRIVATE KEY FILE!          @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Permissions 0644 for '/path/to/my/key.pem' are too open.
It is required that your private key files are NOT accessible by others.
This private key will be ignored.
bad permissions: ignore key: /path/to/my/key.pem
Permission denied (publickey).

It’s a common error to see when trying to log in to a server via SSH, and it has a relatively easy fix. But before we get to that, let’s get some background on why this error shows up.

Why am I seeing this Error?

What happened is the key you’re trying to use (key.pem in the example above) is too accessible to users on the system.

This is a bad thing because then you’re not the only one able to use the key, which defeats the purpose. Private keys should only be accessible to one user.

For example, if an attacker somehow gains access to any of the accounts on your system, then they’d be able access the key, as opposed to having to get access to your account specifically. This gives them too many opportunities to get to the private key.

How can I fix it?

Like I said earlier, this is an easy fix. Just run:

$ sudo chmod 600 /path/to/my/key.pem

Or if you are running gui, locate the pem file, right click and change the permissions as per below.

That should do the job.

Terraform walk through with AWS creating S3 buckets

Posted on June 24, 2021June 25, 2021 by admin

Terraform is a IaaC tool developed by Hashicorp. It can be used with multiple platforms like AWS, Microsoft Azure, GCP and provision different environments.

Running Terraform is simple, you simply need to install Terraform first on the host you intend to run, whether it be local, remote or cloud hosts. Move to desired location /usr/local/bin. Then create a Terraform config file – which is written in HCL (Hashicorp Config Language) that ends with .tf extension.
Using simple commands like Terraform init, plan, apply, destroy, you can manage and provision infrastructure safely and efficiently.

See my Video tutorial on setting up Terraform on AWS EC2 instance.

My Video Tutorials

Posted on June 21, 2021August 2, 2021 by admin

Here are some Azure tutorials that I have created.
The reason why I create video tutorial is because I can help others while I am improving myself learning.
To create a tutorial, I need to know every single details about my topic. Therefore I got to prepare more and learn more by creating these tutorials.

These contents are free for educational non-profit purposes. I have put time and effort to create these tutorials.
If you push a subscribe button on my channel, I would be much appreciated and this will also encourage me to create more tutorial videos. Thanks.

My Youtube Channel below –
https://www.youtube.com/channel/UC-w05D5NxOcfogVG2-VlHtQ/videos

IaaC and my weapons of choice

Posted on June 20, 2021June 20, 2021 by admin

With Infrastructure as a Code IaaC, you can manage any infrastructure such as Network, Servers, Storage and Applications. There are many common IaC tools. Although you can use any combination of these tools to create similar solutions, these are strength in each tools and these are my preferences to achieve different goals.

Image Templates
You need image templates to create custom images of a Virtual Image or Container.
Then you will need software and dependencies installed on it. My weapon of Choice – Docker

Configuration Management
Ansible – the strength of this tool is that it is Idempotent. There is Ansible Playbook will which will check with repository. You can run the code multiple times and every time you run the code, it will only make changes to the difference and bring the code to defined state.

Provisioning Tools
Terraform – This Hashicorp tool supports almost every infrastructure and it can be set up on many platforms, AWS, VMware, Azure, you name it.

Cloud Formation – simply because it is AWS proprietary. If your job has alot to do with AWS, Cloud Formation is the way to go.

Teza

Apply for $300 AWS Credit with AWS Proof of Concept Program

Posted on January 19, 2021June 14, 2021 by admin

Yes Amazon is giving away $300 credit with Proof of Concept Program.
Read on below from AWS and see if you are eligible for the application.

Amazon Web Services wants to help your business scale and grow with low cost, easy to use cloud products and services. The AWS Proof of Concept Program provides a $300 credit to small businesses to quickly get started and test AWS against their specific IT and business requirements by subsidizing a proof of concept. More than a million active customers, from Slack to GE, use AWS Cloud solutions to deliver flexibility, scalability, and reliability. Join them and start scaling your business with AWS today.

To qualify, you must have:

A valid AWS account, with up-to-date billing information
(reseller accounts do not qualify)
Not previously received more than $200 of AWS promotional credit
A sufficient business case and proof of concept to test using the credits
No linked accounts
Credits valid for 6 months

No Package MYSQL Server Available

Posted on January 12, 2021June 25, 2021 by admin

If you have come across an issue of installing sql server on AWS Linux AMIs, especially when you are using one of those Free Tier Eligible AMIs, well its very likely that this is the solution for you. I came across this issue and got me stuck for a little while before I found the solution somewhere on the net. The problem is that the AMIs that you are using may not have the default repos in it.

Continue reading →

1 2 Next »

M	T	W	T	F	S	S
			1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29	30	31

Why am I seeing this Error?

How can I fix it?

My Youtube Channel below – https://www.youtube.com/channel/UC-w05D5NxOcfogVG2-VlHtQ/videos

My Youtube Channel below –
https://www.youtube.com/channel/UC-w05D5NxOcfogVG2-VlHtQ/videos