-
![thumbnail]()
Amazon RDS FAQs – Amazon Web Services (AWS)
October 12, 2016 at 11:22:42 AM GMT+2 - permalink -Q: What is a DB Subnet Group and why do I need one?
A DB Subnet Group is a collection of subnets that you may want to designate for your RDS DB Instances in a VPC. Each DB Subnet Group should have at least one subnet for every Availability Zone in a given Region. When creating a DB Instance in VPC, you will need to select a DB Subnet Group. Amazon RDS then uses that DB Subnet Group and your preferred Availability Zone to select a subnet and an IP address within that subnet. Amazon RDS creates and associates an Elastic Network Interface to your DB Instance with that IP address.
Please note that, we strongly recommend you use the DNS Name to connect to your DB Instance as the underlying IP address can change (e.g., during a failover).
For Multi-AZ deployments, defining a subnet for all Availability Zones in a Region will allow Amazon RDS to create a new standby in another Availability Zone should the need arise. You need to do this even for Single-AZ deployments, just in case you want to convert them to Multi-AZ deployments at some point.
-
https://aws.amazon.com/rds/faqs/
-
Note: mitm call app https
October 12, 2016 at 11:00:23 AM GMT+2 - permalink -ngrep pas glop quand https, du coup :
sudo apt install mitmproxy
mitmdump -v -d
Dans l'application, configurer la lib (curl ou autre..) pour utiliser un proxy http/https sur 127.0.0.1:8080 (mitmdump écoute sur ce port)
ou bien plus violent :
sysctl -w net.ipv4.ip_forward=1
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 8080
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 443 -j REDIRECT --to-port 8080Dans tous les cas, la lib va raler car certif pas ok : utiliser insecure si possible dans l'app ou bien generer certif et le trust au niveau de l'os
à partir de là on peut voir les call/response avec mitmdump
-
https://links.infomee.fr/?NTFdDw
-
![thumbnail]()
-
SNCF : à quoi sert donc le TLD .sncf qui a coûté si cher ? - ZDNet
October 11, 2016 at 4:48:22 PM GMT+2 - permalink -eh bah, 25000$ de redevance annuelle pour un tld
ya interet à en vendre du domaine pour rentabiliser cette redevance
-
http://www.zdnet.fr/actualites/sncf-a-quoi-sert-donc-le-tld-sncf-qui-a-coute-si-cher-39842702.htm
-
AWS - VPC Networking for Beginners - DZone Cloud
October 11, 2016 at 10:49:27 AM GMT+2 - permalink -So, an elastic ip and an igw in the routing table are two criterion for an instance to be available directly from the internet. Subnets with such routing tables attached to them are also known as public subnets (non-local traffic routed to internet gateway), as any instance with an elastic ip can be publicly available from this subnet.
-
https://dzone.com/articles/aws-vpc-networking-beginners
-
Note: mysqldump
October 10, 2016 at 3:41:44 PM GMT+2 - permalink -Options interessantes : --quick --single-transaction
-
https://links.infomee.fr/?AwRWHg
-
How to Automatically Tag Amazon EC2 Resources in Response to API Events - AWS Security Blog
October 10, 2016 at 3:09:55 PM GMT+2 - permalink -Intéressant comme workflow, l'objectif est de laisser les users/soft créer des EC2 comme ils veulent et avoir les droits seulement sur les EC2 qu'ils ont créé.
Comment ça marche ? auto tagging des EC2 avec l'userid à la création couplé avec une policy qui autorise les action seulement si le tag avec l'userid est présent.
pacon
Dans le meme genre sans l'auto tagging :
http://blogs.aws.amazon.com/security/post/Tx29HCT3ABL7LP3/Resource-level-Permissions-for-EC2-Controlling-Management-Access-on-Specific-Ins
-
https://blogs.aws.amazon.com/security/post/Tx150Z810KS4ZEC/How-to-Automatically-Tag-Amazon-EC2-Resources-in-Response-to-API-Events
-
appbaseio/mirage: 🔎 GUI for writing Elasticsearch queries
October 7, 2016 at 2:45:11 PM GMT+2 - permalink -woot nice! ça peut être bien utile
via Doo
-
https://github.com/appbaseio/mirage
-
hipchat/hubot-hipchat: HipChat adapter for GitHub's Hubot
October 7, 2016 at 11:21:11 AM GMT+2 - permalink -ça a l'air un peu plus compliqué qu'avec irc à première vue
-
https://github.com/hipchat/hubot-hipchat
-
![thumbnail]()
git - How can I grep hidden files? - Stack Overflow
October 6, 2016 at 10:54:44 AM GMT+2 - permalink -I have a bad habit: grep -r search *
It does not search in hidden files/dir...
Better to do this:
grep -r search .
-
http://stackoverflow.com/questions/10375689/how-can-i-grep-hidden-files
-
Using Ctrl+Tab in GNU Screen over PuTTY at scnr.net
October 5, 2016 at 3:13:25 PM GMT+2 - permalink -living in the windows side is a pain
-
http://scnr.net/blog/index.php/archives/61
-
EC2 — Boto 3 Docs 1.4.0 documentation
October 5, 2016 at 10:05:58 AM GMT+2 - permalink -These are the resource's available collections:
classic_addresses dhcp_options_sets images instances internet_gateways key_pairs network_acls network_interfaces placement_groups route_tables security_groups snapshots subnets volumes vpc_addresses vpc_peering_connections vpcs
-
http://boto3.readthedocs.io/en/latest/reference/services/ec2.html#service-resource
-
Aurora on Amazon RDS - Amazon Relational Database Service
October 3, 2016 at 4:01:46 PM GMT+2 - permalink -Pour un cluster Aurora donné, 3 endpoints :
- cluster endpoint : pointe toujours sur le master
- reader endpoint : pointe toujours sur un slave
- instance endpoint : permet de pointer spécifiquement une instance donnée. Ne garantit pas que cette instance restera un slave ou un master.
You can determine which DB instance in an Aurora DB cluster that a connection is connected to by checking the innodb_read_only global variable, as shown in the following example.
SHOW GLOBAL VARIABLES LIKE 'innodb_read_only';
The innodb_read_only variable will be set to ON if you are connected to an Aurora Replica and OFF if you are connected to the primary instance.
-
http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/CHAP_Aurora.html
-
Note: Some useful AWS CLI oneliner
September 28, 2016 at 10:56:53 AM GMT+2 - permalink -Because terminal > web interface
To briefly list all env (one env by line):
aws elasticbeanstalk describe-environments|jq -r '.Environments|.[]| [.ApplicationName, .EnvironmentName, .VersionLabel, .Status, .CNAME] | @csv'|sortTo get all info about one env (pass EnvironmentName):
aws elasticbeanstalk describe-environments --environment-names toto-prodList all subnets:
aws ec2 describe-subnets|jq -r '.Subnets|.[]|.SubnetId'List all ec2 instanceId:
aws ec2 describe-instances|jq -r '.Reservations|.[]|.Instances|.[]|.InstanceId'List all ec2 instanceId with its associated subnetId:
aws ec2 describe-instances|jq -r '.Reservations|.[]|.Instances|.[]|[.InstanceId, .SubnetId] | @csv'
-
https://links.infomee.fr/?uMBmyg
