Make sure that bamboo isn’t backed off to the RDS instance you deleted, and if it is, make sure you take that final snapshot so that you can easily move it over. Oh, also be aware that mariadb isn’t compatible with bamboo unless you throw in some startup arguments.
Since we’ve got a dedicated DB server, not running as a spot instance now (so it shouldn’t just disappear whenever the hell it wants) and we’re not running RDS, I’ve re-implemented nightly sql backups to S3.
The only way to use Amazon’s free SSL certificates is if you pipe them through something like cloudformation, use them with cloudfrout or a load balancer.
Tried that for December and it turns out its fairly expensive to run an ELB for a month – it’s all fine and dandy whilst I’ve got EDU credit to burn through but I can’t afford $20 a month to shortcut an easy way to SSL cert up the site.
I started to look at certbot and lets encrypt as an automatic way of getting a cert in place, changed my apache config and here we are – running through a straight connection on port 443 to the web server.
To be fair, it was a little silly having a load balancer in front of a single web server, but I didn’t have the time to do anything else with it.
I’ve got a little bit of time now, so setting things up properly.
It’s always a good idea not to forget your password. Especially to your blog, especially when you haven’t posted to it for months.
So, yeah, it’s also a good idea to not remember your password and then be fooled by it not working because you’ve locked your account out yet there’s no visual feedback of having done so.
I find more and more that I’m just letting my phone randomly create a password for me/store it in my keychain – seems better that way, plus when I do actually start forgetting important things it won’t matter, because my phone will for all intents and purposes be me anyway.
Turns out that WAF costs $5 per acl and $5 per rule per month. And that $10 protection I had in place for a simple geo block against China and a few other countries I was getting probing attacks from wasn’t included in the AWS credit I’ve got so I’ve turned it off.
Done some playing around with ALBs and fail2ban including setting up a custom filter for script attacks but need to do some further refinement with x forwarded for headers and what not.
Hopefully i’ll get some more time to have a fiddle with it over the weekend.
Since I’ve got $300 of AWS credit to use up before December 2019 and my t3 micro instance isn’t really doing a good job of that, I decided I might as well throw up a load balancer, get the certificate assigned to it and set up route53 properly to that alias.
So I passed my AWS solutions architect associate exam on the 27th September. I think I ended up with about 87%
Pretty happy with that. Now trying to decide if I’m going to go for the systems administrator exam and developer exam or if I’m going to concentrate on solutions architecture.
I’m also eyeing up an open university degree in computing. I say I’m eyeing it up, I’ve registered and I’m waiting to see if I get approved for a part time student loan.
BSc (Honours) Computing and IT
Sounds impressive doesn’t it?
From a career perspective, it won’t give me much more in terms of experience and career usable knowledge – especially in an ever changing cloud landscape.
What it will give me, is a revisit to solid maths for the first time in over 20 years and a grounding in programming that I felt has always been missing from my repertoire.
I feel a deeper understanding of the maths side of things along with some hardcore software development will help with both my python and bash scripting.
I can read most code (even badly commented code) and tell you what it does. What I struggle with is writing something from scratch. Hoping this will help. Plus there’s some cool modules like robotics which I’ve always had an interest in.
If I decided to go for the networking speciality there’s always the option to revisit the CCNA too. We’ll see.
Next few months promise to be exciting regardless.
Picked up the October Mickey Mouse memories edition from the Disney store this week.
Wasn’t sure about it when I first saw it but after looking at it for a few minutes and realising it’s the same terminal colour scheme as I use on SecureCRT for my Mac, and it’s full of binary, I absolutely love it.
Pretty sure the binary will say something. Haven’t worked it out it googled it yet.
There’s a mug and a pin set too. I haven’t picked those up. Yet.