Many Lambda functions are written in Python and use the AWS SDK boto3. Initializing your first boto3 client or resource can take a long time after a Lambda cold start. In this article we explore how much exactly and why it’s up to 10x faster on Lambdas with more memory.
Amazon CloudWatch is a managed service for storing, visualizing and analyzing logs and metrics data of applications and AWS infrastructure. The service is simple to configure and use and is priced based on usage. Thus, adoption is generally both easy and cheap compared to other tools such as Splunk, ElasticSearch, Datadog, and all the others out there. Upon heavy usage, it can become quite expensive though. This post summarizes some common cost drivers in CloudWatch and proposes strategies to identify these and reduce their costs.
Online Lehren und Lernen - ein Erfahrungsaustausch mit Lehrenden und der AWS Usergroup Hannover Nicht nur für AWS Interessierte, sondern für alle Lehrenden und Netzwerkenden, die von persönlichem Kontakt zu Online Veranstaltungen umstellen mussten.
Yoni: Oftentimes, when we think about protecting resources in the cloud, we immediately think about the typical ways in - via public-facing applications or abuse of credentials. In this talk, we will look at one additional way: through the work unit parameters of a service. During the development of Indeni’s Cloudrail SaaS product, Yoni was responsible for trying to find ways to hack into the service. One of the ways he found, raises questions about how secure ECS workloads really are.
Database migrations can be a complex and time consuming task. This is particularly true for heterogeneous database migrations. Today we will see how the AWS Database Migration Service (DMS) can be a life saver for both homogeneous and heterogeneous migrations.
In a recent training I learned something about DynamoDB streams that surprised me. I had expected that any PutItem, UpdateItem or DeleteItem API call would cause a record to appear in the stream of my table, but that’s not the case. The stream works a little different from what I expected and in this short article I’m going to explain to you how.
Keeping accounts decoupled is important in cross account scenarios. Setting permissions in the wrong way can lead to unwanted behavior. Better avoid setting a principal in a resource policy to a specific ARN as it may lead to ‘Invalid Principal’-errors. Using conditions provides you a more reliable and least privileged architecture.
A new year is always an opportunity to start fresh and that’s why we’ve decided to update the design of aws-blog.de this year. Patrick has been hard at work on the design for a while and we’re excited to show it off.
