This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| AWS Storage Gateway - A service that connects to a software appliance, that is on location, to supply cloud based storage seamlessly and securely as a cost scalable cost effective storage. | |
| Your Data Center => AWS Storage Gateway => AWS S3/Glacier/Whatever | |
| Three different types of Storage Gateways: | |
| File Gateway (NSF) - for flat files: pdfs, images, etc | |
| Volumes Gateway (iSCSI) - block based storage for operating systems: virtual operating system, virtual hard disk, ect | |
| - Virtual hard disks |
michaelguild13
/ AWS-S3-Security-and-Encryption.txt
Created
January 30, 2019 06:40
AWS-S3-Security-and-Encryption
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| S3 Security and Encryption Overview | |
| Security | |
| - By default, all newly created buckets are PRIVATE | |
| - Access control is done with Bucket Policies (entire bucket) or Access Control Lists (specific object) | |
| - Can log all access requests to S3 Bucket | |
| Encryption | |
| In Transit - sending information to and from bucket via SSL/TLS (https) | |
| At Rest - four types of encryption: SSE-S3, SSE-KMS, SSE-C, and Client Side Encryption | |
| - Server Side Encryption |
michaelguild13
/ AWS-CloudFront-CDN-Overview.txt
Last active
January 30, 2019 06:19
AWS-CloudFront-CDN-Overview
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| CloudFront CDN Overview | |
| - Content Delivery Network (CDN) | |
| - Consists of Distribution servers (network of Edge Locations) | |
| - Delivers content based on geographical location of user and the origin of the delivery server | |
| - Optimised to work with delivery of website, dynamic, static, streaming, and interactive content | |
| - Simple Storage (S3), Elastic Compute Cloud (EC2), Elastic Load Balancing, and Route53. | |
| - Can Also work with non-AWS origin server. | |
| Edge Location - Location where content will be cached that is separate to an AWS Region/Avalibility Zone (AZ) | |
| - Not for Just READ only, you can write to them too. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| S3 - Object based storage spread across multiple devices and facilities. | |
| - It's meant for files, not databases. | |
| - Files are stored in Buckets | |
| - Files can be up to 5TB | |
| - Unlimited storage | |
| - Universal Namespaced (uniquely global) | |
| - When you upload, you get a 200 for sucess | |
| - Objects consist of Key ( file name ) and value (data of file) | |
| - Optional versioning | |
| - Metadata |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| IAM - Identity Access Management | |
| Used to manage users, groups, roles, and polices. | |
| IAM is universal which means that all users, groups, roles, permissions are not region specific ( at this time 2019 ). | |
| You can setup password rotation policies, MultiFactor Authentication | |
| Root Account | |
| - the initial account used to create the aws account | |
| - this should be the companies email account | |
| - has complete admin access (god mode) |
michaelguild13
/ gist:65ba30e4fac9490cb7ba3af4bd746a6e
Created
December 20, 2018 21:07
— forked from toddmotto/gist:6596373
Disable Web Security in Chrome Canary to make cross-domain XHR requests (local servers obvs).
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| open -a Google\ Chrome\ Canary --args --disable-web-security |