Config Management Camp in Ghent: Puppet community robbed of its base
The infrastructure automation community met at the annual CnfgMgmtCamp in Belgium. They struggled with changes to Puppet and Foreman.
GitHub4d
Explore Terraform remote state on s3 bucket
First things first. The bucket must be available for Terraform to use it to store state remotely. The bucket is named remote-state and referenced in terraform.tf.
GitHub4d
README.md
Create an S3 bucket using Terraform. Configure the bucket to allow public read access. Create an S3 bucket policy that allows read-only access to a specific IAM user or role. Enable versioning on the ...
How attackers abuse S3 Bucket Namesquatting — And How to Stop Them
AWS S3 bucket names are global with predictable names that can be exploited in "S3 bucket namesquatting" attacks to access or ...
CSOonline5d
Abandoned AWS S3 buckets open door to remote code execution, supply-chain compromises
Attackers re-register abandoned AWS S3 buckets filled with malicious files that are executed by applications looking for ...
SecurityWeek5d
Abandoned Amazon S3 Buckets Enabled Attacks Against Governments, Big Firms
Amazon S3 buckets could have been leveraged to deliver malware or backdoors to governments and Fortune companies.
Hosted on MSN6d
Abandoned AWS S3 buckets can be reused in supply-chain attacks that would make SolarWinds look 'insignificant'
When cloud customers don't clean up after themselves, part 97 Abandoned AWS S3 buckets could be reused to hijack the global ...