Posts tagged: awshttps://waylonwalker.com/tags/aws/atom.xml2025-09-05T23:45:00ZAll posts with the tag "aws"Waylon Walkermarkata-goπ Ben Dicken on X: "I am once again begging you to put your data...https://waylonwalker.com/thought-829/2025-09-05T23:45:00Z2025-09-05T23:45:00Z!https://x.com/BenjDicken/status/1963998076198105475<div class="embed-card embed-card-external">
<a href="https://x.com/BenjDicken/status/1963998076198105475" class="embed-card-link has-avatar has-avatar-before" target="_blank" rel="noopener noreferrer" style="--favicon-url: url('/assets/markata/link-avatars/x.com.ico');" data-favicon="/assets/markata/link-avatars/x.com.ico">
<div class="embed-card-content">
<div class="embed-card-title">External Link</div>
<div class="embed-card-meta">X (formerly Twitter) Β· x.com</div>
</div>
</a>
</div>
<p>This is a really great animation of latency across different aws regions based on us-east-1.</p>
<div class="admonition note">
<p class="admonition-title">Note</p>
<p>This post is a <a href="/thoughts/" class="wikilink" data-title="Thoughts" data-description="These are generally my thoughts on a web page or some sort of url, except a rare few don't have a link. These are dual published off of my..." data-date="2024-04-01" data-preview="These are generally my thoughts on a web page or some sort of url, except a rare few don't have a link. These are dual published off of my...">thought</a>. Itβs a short note that I make
about someone elseβs content online <a href="/tags/thoughts/" class="hashtag-tag" data-tag="thoughts" data-count="2" data-reading-time="3" data-reading-time-text="3 minutes">#thoughts</a></p>
</div>
Waylon Walkerhello@waylonwalker.comhttps://waylonwalker.comπ How an empty S3 bucket can make your AWS bill explode | by Mac...https://waylonwalker.com/thought-263/2024-05-01T02:31:56Z2024-05-01T02:31:56Z!https://medium.com/@maciej.pocwierz/how-an-empty-s3-bucket-can-make-your-aws-bill-explode-934a383cb8b1<div class="embed-card embed-card-external">
<a href="https://medium.com/@maciej.pocwierz/how-an-empty-s3-bucket-can-make-your-aws-bill-explode-934a383cb8b1" class="embed-card-link has-avatar has-avatar-before" target="_blank" rel="noopener noreferrer" style="--favicon-url: url('/assets/markata/link-avatars/medium.com.png');" data-favicon="/assets/markata/link-avatars/medium.com.png">
<div class="embed-card-content">
<div class="embed-card-title">External Link</div>
<div class="embed-card-meta">medium.com</div>
</div>
</a>
</div>
<p>Imagine waking up to a $1,300 for running an example project! That sounds like peanuts for a cloud bill but for an individual trying to learn that hits my monthly budget real hard.</p>
<p>Thatβs what happened to Marciej, make sure you check out the full article and give them a π on Medium if you have an account.</p>
<p>The more I see things come out about aws, the more it makes me sick, and confirm my feelings that I cannot possibly use them for a side project without some real $$ planning to come out of it.</p>
<blockquote>
<p>Yes, S3 charges for unauthorized requests (4xx) as well[1]. Thatβs expected behavior.</p>
</blockquote>
<p>They offer no DDOS protection against 4xx or 5xx requests against your bucket. Absolutely bonkers that you have ZERO control over this.</p>
<hr/>
<p>This response just feels absolutely gross.</p>
<blockquote>
<p>I notified the AWS security team. I suggested that they restrict the unfortunate S3 bucket name to protect their customers from unexpected charges, and to protect the impacted companies from data leaks. But they were unwilling to address misconfigurations of third-party products.</p>
</blockquote>
<p>It sounds like this guy followed some default instructions for an example site, HOW MANY OTHERS have done this or will do this? And AWS has no response other than to take thier money.</p>
<p>After contacting them he was able to get it cancelled, but this is no guarantee. Weβve seen other cloud vendors stick users like this with a few thousand dollar bills after cutting their bill to 5% of the original.</p>
<blockquote>
<p>AWS was kind enough to cancel my S3 bill. However, they emphasized that this was done as an exception.</p>
</blockquote>
<p>2024 is wild on the cloud hosting front, own your shit or be careful.</p>
<div class="admonition note">
<p class="admonition-title">Note</p>
<p>This post is a <a href="/thoughts/" class="wikilink" data-title="Thoughts" data-description="These are generally my thoughts on a web page or some sort of url, except a rare few don't have a link. These are dual published off of my..." data-date="2024-04-01" data-preview="These are generally my thoughts on a web page or some sort of url, except a rare few don't have a link. These are dual published off of my...">thought</a>. Itβs a short note that I make
about someone elseβs content online <a href="/tags/thoughts/" class="hashtag-tag" data-tag="thoughts" data-count="2" data-reading-time="3" data-reading-time-text="3 minutes">#thoughts</a></p>
</div>
Waylon Walkerhello@waylonwalker.comhttps://waylonwalker.comπ Waylon Walker π on X: "Which is more complicated" / Xhttps://waylonwalker.com/thought-155/2023-10-30T13:25:53Z2023-10-30T13:25:53Z!https://twitter.com/_WaylonWalker/status/1718300097174270193<div class="embed-card embed-card-external">
<a href="https://twitter.com/_WaylonWalker/status/1718300097174270193" class="embed-card-link" target="_blank" rel="noopener noreferrer">
<div class="embed-card-content">
<div class="embed-card-title">External Link</div>
<div class="embed-card-meta">X (formerly Twitter) Β· twitter.com</div>
</div>
</a>
</div>
<p>Wow, shocked at these results. All this time Iβve been told and believed that k8s is incredibly hard, and you need a $1M problem before you think about it because it will take a $1M team to maintain it. So far my experience has been good, and I definitely do not have a $1M problem in my <a href="/homelab/" class="glossary-term" title="A place to self host applications. For me this is primarily self built web applications, and applications for sharing files with my family. Techno Tim has a...">homelab</a>.</p>
<p><a href="https://twitter.com/_WaylonWalker/status/1718300097174270193"><img class="glightbox" src="https://shots.wayl.one/shot/?url=https://twitter.com/_WaylonWalker/status/1718300097174270193&height=500&width=700&scaled_width=700&scaled_height=500&selectors=" alt="screenshot of https://twitter.com/_WaylonWalker/status/1718300097174270193"/ data-glightbox="description: screenshot of https://twitter.com/_WaylonWalker/status/1718300097174270193"></a></p>
<div class="admonition note">
<p class="admonition-title">Note</p>
<p>This post is a <a href="/thoughts/" class="wikilink" data-title="Thoughts" data-description="These are generally my thoughts on a web page or some sort of url, except a rare few don't have a link. These are dual published off of my..." data-date="2024-04-01" data-preview="These are generally my thoughts on a web page or some sort of url, except a rare few don't have a link. These are dual published off of my...">thought</a>. Itβs a short note that I make
about someone elseβs content online <a href="/tags/thoughts/" class="hashtag-tag" data-tag="thoughts" data-count="2" data-reading-time="3" data-reading-time-text="3 minutes">#thoughts</a></p>
</div>
Waylon Walkerhello@waylonwalker.comhttps://waylonwalker.comrunning aws cli commands with localstackhttps://waylonwalker.com/running-aws-cli-commands-with-localstack/2022-10-17T14:28:33Z2022-10-17T14:28:33ZUpon first running an cli command using localstack you might end up with the following error.<p>Upon first running an <code>aws</code> cli command using localstack you might end up with the following error.</p>
<pre class="chroma"><code><span class="line"><span class="cl">Unable to locate credentials. You can configure credentials by running <span class="s2">"aws configure"</span>.
</span></span></code></pre><h2 id="easy-way">Easy way <a href="#easy-way" class="heading-anchor">#</a></h2>
<p>The easy easiest way is to leverage a package called <code>awscli-local</code>.</p>
<pre class="chroma"><code><span class="line"><span class="cl">pipx install awscli-local
</span></span></code></pre><h2 id="leveraging-the-awscli">Leveraging the awscli <a href="#leveraging-the-awscli" class="heading-anchor">#</a></h2>
<p>If you want to use the cli pro</p>
<pre class="chroma"><code><span class="line"><span class="cl">pipx install awscli
</span></span><span class="line"><span class="cl">
</span></span><span class="line"><span class="cl">aws config --profile localstack
</span></span><span class="line"><span class="cl"><span class="c1"># put what you want for the keys, but enter a valid region like us-east-1</span>
</span></span><span class="line"><span class="cl">
</span></span><span class="line"><span class="cl"><span class="nb">alias</span> <span class="nv">aws</span><span class="o">=</span><span class="s1">'aws --endpoint-url http://localhost:4566 --profile localstack'</span>
</span></span></code></pre>Waylon Walkerhello@waylonwalker.comhttps://waylonwalker.comlocalstack status permissionhttps://waylonwalker.com/localstack-status-permission/2022-10-17T08:55:26Z2022-10-17T08:55:26ZI ran into an issue where I was unable to ask localstack for its status. I would run the command and it would tell me that it didn't have permission to read...<p>I ran into an issue where I was unable to ask localstack for its status. I
would run the command and it would tell me that it didnβt have permission to
read files from my own home directory. Letβs fix it</p>
<h2 id="the-issue">The issue <a href="#the-issue" class="heading-anchor">#</a></h2>
<p>I would run this to ask for the status.</p>
<pre class="chroma"><code><span class="line"><span class="cl">localstack status
</span></span></code></pre><p>And get this error</p>
<pre class="chroma"><code><span class="line"><span class="cl">PermissionError: <span class="o">[</span>Errno 13<span class="o">]</span> Permission denied: <span class="s1">'/home/waylon/.cache/localstack/image_metadata'</span>
</span></span></code></pre><h2 id="what-happened">What happened <a href="#what-happened" class="heading-anchor">#</a></h2>
<p>It dawned on me that the first time I ran localstack was straight docker, not
the python cli. When docker runs it typically runs as root unless the
Dockerfile sets up a user and group for it.</p>
<figure>
<a href="https://stable-diffusion.waylonwalker.com/000364.3517264680.webp" class="glightbox-link"><img class="glightbox" src="https://stable-diffusion.waylonwalker.com/000364.3517264680.webp" alt="βcell shaded, long, full body, shot of a cybernetic blue soldier with glowing pink eyes, llustration, post grunge, cinebatic dramatic atmosphere, sharp focus, pink glowing volumetric lighting, concept art by josan gonzales and wlop, by james jean, Victo ngai, David RubΓn, Mike Mignola, Laurie Greasley, highly detailed, sharp focus,alien,Trending on Artstation, HQ, deviantart, art by artgemβ -s50 -W832 -H416 -C12.0 -Ak_lms -S3517264680 "/ data-glightbox="description: βcell shaded, long, full body, shot of a cybernetic blue soldier with glowing pink eyes, llustration, post grunge, cinebatic dramatic atmosphere, sharp focus, pink glowing volumetric lighting, concept art by josan gonzales and wlop, by james jean, Victo ngai, David RubΓn, Mike Mignola, Laurie Greasley, highly detailed, sharp focus,alien,Trending on Artstation, HQ, deviantart, art by artgemβ -s50 -W832 -H416 -C12.0 -Ak_lms -S3517264680"></a>
</figure>
<h2 id="how-to-fix-it">How to fix it <a href="#how-to-fix-it" class="heading-anchor">#</a></h2>
<p>If you have sudo access to the machine you are on you can recursively change
ownership to your user and group. I chose to just give myself ownership of my
whole <code>~/.cache directory</code> you could choose a deeper directory if you want. I
feel pretty safe giving myself ownership to my own cache directory on my own
machine.</p>
<pre class="chroma"><code><span class="line"><span class="cl">whoami
</span></span><span class="line"><span class="cl"><span class="c1"># waylon</span>
</span></span><span class="line"><span class="cl">
</span></span><span class="line"><span class="cl">chown -R waylon:waylon ~/.cache
</span></span></code></pre><h2 id="now-its-working">Now itβs working <a href="#now-its-working" class="heading-anchor">#</a></h2>
<p>Running localstack status now gives me a nice status message rather than an
error.</p>
<pre class="chroma"><code><span class="line"><span class="cl">β― localstack status
</span></span><span class="line"><span class="cl">βββββββββββββββββββ¬ββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
</span></span><span class="line"><span class="cl">β Runtime version β 1.2.1.dev β
</span></span><span class="line"><span class="cl">β Docker image β tag: latest, id: dbbfe0ce0008, π 2022-10-15T00:51:03 β
</span></span><span class="line"><span class="cl">β Runtime status β β stopped β
</span></span><span class="line"><span class="cl">βββββββββββββββββββ΄ββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
</span></span></code></pre>Waylon Walkerhello@waylonwalker.comhttps://waylonwalker.com