I briefly looked at AWS S3 Glacier storage, thinking maybe having a second cloud host for my backups would be good.
I can't actually figure out how much this will cost me because they charge per operation (you know, like PUT, GET, etc.) in addition to the storage costs (which I easily figured out).
People may want to reconsider using #AWS#S3 for static web hosting, or at the bare minimum come up with convoluted names and treat their S3 bucket name as sensitive information. If your S3 bucket name comes up in any web search (for example because it's literally in a public GitHub repo), that's a potential attack vector.
The whole S3 charging for unauthorized/denied accesses to #S3 shows exactly the culture of #Amazon . Just because they reversed this policy (TBD if they actually do) doesn't mean that other similar policies will be changed. That the support person couldn't raise concerns, that the middle managers didn't care enough about the customers to realize how bad/stupid/damaging it is.
@feld Yeah. I remember spending more than a day years ago, trying to create a policy for a user account to have access to a specific file in S3, and even w/ help from people who knew AWS, I could not for the life of me create a policy that would work. Part of the problem was that despite me having delegated access to the resource, there isn't anyway for me to see what permission failures happened to debug the issue (you can if you have root, etc).
I haven’t tested this myself, but it seems this may be a very nasty way to inflict targeted or random harm against anyone with #AWS#S3 buckets. #infosec
Wahnsinn. Die #Amazon#Cloud ist ja wirklich ein tolles Ding ... um Amazon Geld zu besorgen. 🤣
Wirklich unglaublich, was man da liest. Da werden viele Firmen teures Lehrgeld zahlen, bis sie wegen Kostenexplosion vielleicht doch wieder in eigenes Wissen und Know-How investieren, sofern noch möglich ...
@michael When experimenting with AWS, Azure, and more I always pull down anything after I have completed a tutorial. I don't trust cloud service providers not to charge for something that should not be charged for.
I need a Github Action template "upload-to-S3-provider-who-is-not-AWS-for-dumb-bimbo" because damn that overcomplicated devops ecosystem is gatekeeping simple babes like me 😭💅
(look at this rocket-science shit called AWS documentation… what the hell)
@annika i’m not even trying to use AWS but apparently you have to go through their platform specific doc if you want to get info on how to upload stuff on a bucket a S3 bucket 😖 (And Github doc to do it in their runner isn’t much help + most of S3 upload action template in their marketplace assume you wanna upload it to AWS)
@tixie Yeah, it's a shame that they're such a heavyweight. Even when you're not using their systems, you're subject to their confusing product lines (from compatible solutions and other copycats)
Turns out you can order a server or even a whole rack from #AWS, plug it in your on-prem data center and use it as if it was your private region. Deploy #EC2, #S3, #RDS etc. all through AWS console! https://aws.amazon.com/outposts/