Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x

AWS

Amazon Web Services (AWS), is a collection of remote computing services, also called web services, that make up a cloud-computing platform  operated from 11 geographical regions across the world. The most central and well-known of these services include Amazon Elastic Compute Cloud, also known as "EC2", and Amazon Simple Storage Service, also known as "S3". Other services include Elastic MapReduce (EMR), Route 53 (a DNS web service),  provides a highly available and scalable Domain Name System (DNS) web service, Virtual Private Cloud (VPC), storage, database, deployment and application services.

Share tech news, updates, or what's on your mind.

Sign up to Post

I have a wordpress site running on AWS EC2 Ubuntu. I don't know how to technically describe this but here it goes:
I need a page URL that when you go to the URL it will Automatically allow someone to download a CSV file after HTTP Authentication.

I have seen and tried tutorials for setting up a HTTP Authentication for my Admin Sign in page. But I can't find any help on setting up a single page.  I am also up to suggestions on how to setup this HTTP Authentication on AWS S3 Bucket. I hope this makes sense. Thank you for the help.
0
Nothing ever in the clear!
LVL 1
Nothing ever in the clear!

This technical paper will help you implement VMware’s VM encryption as well as implement Veeam encryption which together will achieve the nothing ever in the clear goal. If a bad guy steals VMs, backups or traffic they get nothing.

I am trying to install multiple mediawiki farm sharing same resources (4 in total), exactly like Wikisource.org, on Amazon Web Services EC2. This installation will consist of the main wiki in English (wikiexample.org), two languages sub domains (lang1.wikiexample.org, lang2.wikiexample.org) and a commons hosting their media files (commons.wikiexample.org).

The wikis will have the extensions of Wikisource like ProofreadPage, PDF handler, Djvu extension and the Translate extension.

It should be possible to maintain and upgrade the entire wikis centrally and not one at a time.

Can anyone please put me through how to go about this?

Thank you.
0
I powered up our temp server (W2K8R2) to run and schedule some scripts (cmd or bat and maybe ps1). However our backup server (W2K8R2) which issues the snapshots won't run any basic AWS commands although Windows for Powershell for AWS is installed and AWS CLI commands are used for the snapshot. I'm getting the error below. It is running PowerShell 3.0 and I don't want to upgrade it as I am worried that I might break the existing snapshot. I have this same problem with new servers (W2K8R2-W2K16) with no GPO in a workgroup (no custom settings).

=====================================================
PS C:\\Program Files (x86)\\AWS Tools\\PowerShell\\AWSPowerShell> aws aws : The term 'aws' is not recognized as the name of a cmdlet, function, script file, or operable program. Check the spelling of the name, or if a path was included, verify that the path is correct and try again.
At line:1 char:1
+ aws
+ ~~~
    + CategoryInfo          : ObjectNotFound: (aws:String) [], CommandNotFoundException
    + FullyQualifiedErrorId : CommandNotFoundException  =======================================

Steps taken
1. Added the full to both the system and PowerShell path $env:PSModulePath = $env:PSModulePath + ";C:\\Program Files (x86)\\AWS Tools\\PowerShell\\AWSPowerShell"

2. Ran the Get-Module command, but probably not needed PS C:\\Program Files (x86)\\AWS Tools\\PowerShell\\AWSPowerShell> Get-Module

ModuleType Version    Name                                …
0
Gamers in Cloud Meltdown over server speeds

If you're looking for evidence of slowdown on cloud servers following Meltdown patching, look no further than the online gaming community where players of the Battle-Royale style 100 player free-for-all game Fortnite suddenly found that getting Azure and AWS servers to keep 100 fast moving players updated with each other's real time movements is more processor heavy than anyone could guess.
https://www.theverge.com/2018/1/6/16857878/
2
 
LVL 56

Expert Comment

by:andyalder
One wonders why they bothered to patch dedicated back-end servers since they aren't vulnerable to exploitation unless some administrator starts browsing the web with one of them.
2
Can you use AWS Lamda or some other service to run powershell or AWS CLI commands so you don't need a server?

aws ec2 describe-snapshots --filters Name=volume-id,Values=vol-abc123 --query Snapshots[*].{ID:SnapshotId} --output text >>c:\\AWS\snapshots.txt

aws ec2 describe-snapshots --query 'Snapshots[?StartTime >= `2018-01-01`].{id:SnapshotId}'
0
Two questions:


1. How do I combine these two scripts? They work by themselves, but I can't combine successfully. I want to ideally get the latest snapshot or any snapshots after 01-01-2018. The current method is grabbing all snapshots which exceed 20,000 and dumps it to a text file, but takes all day to apply the tag. All current snapshots have tags so I just need to tag most recent or anything after 01-01-2018.

aws ec2 describe-snapshots --filters Name=volume-id,Values=vol-abc123 --query Snapshots[*].{ID:SnapshotId} --output text >>c:\\AWS\\snapshots.txt

aws ec2 describe-snapshots --query 'Snapshots[?StartTime >= `2018-01-01`].{id:SnapshotId}'


2. Can we use Lamda or any other AWS service to run the scripts above?
0
How can I run Script 2 by it's self? Script 1 is a cmd file, but what do I need to delclare in Script 2 to make it a valid script?

Script 1 pulls out all the snapshots (their ID) for a volume to a text file (snaps.txt)
aws ec2 describe-snapshots --filters Name=volume-id,Values=vol-123456 --query Snapshots[*].{ID:SnapshotId} --output text >c:\temp\snaps.txt

Script 2 should go through the text file snaps.txt and tag all the snapshots.
for /F %i in (c:\temp\snaps.txt) do aws ec2 create-tags --resources %i --tags Key=Environment,Value=ABC123


I ran the file snapscript01.cmd to create the list of snapshots in a text file which worked. Awesome. What type of file do I need to run through that output file snaps.txt so it can loop it? I created a cmd and bat with just the command text and it didn't work. No error. I don't want to touch the existing backup script. I want a new script.
0
I know how to manually tag all snapshots for a given volume by outputting them into a file then pasting that into another file (Excel csv) and running the command (see 2 scripts below). How can I hard code a script to tag all snapshots with a specific key and specific value for a specific volume id or instance ID? Or how I dump all snapshots for a given volume id or instance to a text file and run another script to tag them with a specific key and value (yes it would be repeating 99% every night)? I am looking for a short-term solution. Doesn't have to be neat. Just tag all snapshots for a specific volume id or instance id with a key and value. Now sure how to use an array, but I know what it is.


List all snapshots for a given volume
aws ec2 describe-snapshots --filters Name="volume-id",Values="vol-123456" --query 'Snapshots[*].{ID:SnapshotId,Time:StartTime}' --output text >> C:\Temp\test2.txt

Tag all snapshots with a specific value
aws ec2 create-tags  --filters Name="volume-id",Values="vol-123456"  --query 'Snapshots[*].{ID:SnapshotId,VolumeID:VolumeId}' --tags "Key=Cost,Value=ExpenseAccount01"

Something like this (this is just a made up script)
aws ec2 create-tags --filters Name="volume-id",Values="vol-123456" --tags "Key=Cost,Value=ExpenseAccount01"


I am not sure how to use the scripts below (for loop/array)

:: Create a file with all scheduled snapshots
ec2-describe-snapshots|find /i "%dateDOW%: Daily Backup …
0
Hi,

Looking to dip my feet and have a look at certification

Im a cloud n00b

Thanks
0
I am tasked with deploying Active Directory Certificate Service Chain on Windows 2016 Server platform.
Servers would be VMs hosted in AWS (except for the Root Authority), I need to make this environment highly available. My understanding is that OCSP is the service that is needing high availability the most. How do I make use of AWS services to insure High Availability? Is this possible?
0
The Lifecycle Approach to Managing Security Policy
The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

I have an Amazon Web Server (AWS) elastic IP (EC2) Window 2016 server. Can you please explain how I can view the CPU set up and be able to change it from the AWS console?

I know I currently have 8 CPUs set up but I would like to be able to reduce it to 4 then increase it when needed.
0
I have a PDF document on an Amazon S3 site. I have made it public but when I check the link in an Eventbrite event, access is denied. Any suggestions? Thanks
0
I was wondering if it is possible to keep the same external IP if I move our on-premise DB/WEB servers to AWS.
0
Hello Experts,
I have a strange issue I am hoping someone can help with.  We have set-up a VPN tunnel to another organizations servers in AWS, all connectivity seems to be fine back and forth.  What we cannot do is RDP to the servers in AWS, before you throw up firewall let me explain the oddities of the issue.

The consultants of the organization can come to our office and, from our network, RDP back to these machines without issue.

We thought it was a username?password issue but they tested our credentials from their machines and they were successful.

We have disabled firewalls yet still unable to connect.

We found out that from our network we can take a fresh PC, never joined to our domain and connect via RDP.  Once that machine is joined to the domain the connection can no longer be made.  Here is the real kicker, removing the machine from the domain, does not change the issue.  Instead it still suffers the same inability to connect via RDP as the domain joined machines.

The best I can come up with is our GPO is making some registry changes that are not being reversed once dis-joined from the domain.  

Does anyone have any idea of a setting that could cause this issue?  I have cleared the DNS suffix, tried static and DHCP, Admin logins, Firewalls disabled, tracert looks good (issues there would be present regardless of domain memberships).  I am at a loss, help would be greatly appreciated.

Thanks,
Mark
0
I need 4 instances, 1 m4.large, 2 m4.xlarge, and 1 m4.4xlarge, all with Windows and Std SQL Server. Is the price actually ~$4700 per month to keep the 4 instances up and running 100% of the time? This excludes data transfer costs and elastic IP address costs.

https://calculator.s3.amazonaws.com/index.html This is the calculator in question.
0
Trying to use Lambda functions but keep getting this Error Message about ARN User not satisfying the regular expression pattern.

 "errorMessage": "An error occurred (ValidationException) when calling the StartLabelDetection operation: 1 validation error detected: Value 'arn:aws:iam::<ARNNUMBER>:user/testUSER01=+@' at 'notificationChannel.roleArn' failed to satisfy constraint: Member must satisfy regular expression pattern: arn:aws:iam::\\d{12}:role/?[a-zA-Z_0-9+=,.@\\-_/]+",
  "errorType": "ClientError",
  "stackTrace": [

Open in new window

0
Hi there!

I've been trying to figure out how to copy all the tags from my instances to the attached volumes in a region.
I found two Lambda scripts which say they do that, but I can't figure out how to make use of them (I'm not a Lambda whiz)

#1
https://gist.github.com/mlapida/931c03cce1e9e43f147b

#2
https://gist.github.com/deepthawtz/8726d3d0efe4fb48d01180074fa818f9

When I create a function, each of those throws errors and never works. Can someone explain to me ELI5 how to make a function that will copy my instances tags to my volumes, ideally I'd run this scripts when I need it.

My instances are in us-west-2c
0
Here I want to discuss that what will pros and cons if P we are implementing AD/DC over cloud or Inhouse. I have some observation as below.

    we are located in India, so here is Internet connectivity is slow and sometimes has no connectivity.
      Mostly users will be in the office.
         total current users strength is 70+.

        Please suggest as per your experience.

        Looking for the quick and experienced reply.

        Gaurav
        0
        Hi Support
        we have 2 site in AD DS (HO & AWS), i have installed a new DC for AWS Site and associated the AWS subnet
        now the machines in my AWS Site are logon to HO DC instead of AWS DC, this increase network latency (as 2 sites are connected through site to site VPN). how can we make sure AWS site clients authenticate AWS DC
        0
        Become an Android App Developer
        LVL 11
        Become an Android App Developer

        Ready to kick start your career in 2018? Learn how to build an Android app in January’s Course of the Month and open the door to new opportunities.

        Help Request:
        Hi Support
        we have 2 site in AD DS (HO & AWS), i have installed a new DC for AWS Site and associated the AWS subnet
        now the machines in my AWS Site are logon to HO DC instead of AWS DC, this increase network latency (as 2 sites are connected through site to site VPN). how can we make sure AWS site clients authenticate AWS DC
        0
        So I can easily understand how much an EC2 Instance is on Amazon's nice EC2 Instance Pricing page, but I am still having a bit of trouble understand how bandwidth would effect pricing.

        Just to make things simple, say I downloaded a 1 GB file every hour for an entire month. How much would the additional cost from that be?
        0
        Can someone tell me what would need to be included in the (I believe)  instance.tf file? Or if I should be working with another file name to instantiate the rule please let me know. I'm new to both AWS and Terraform.
        0
        I have an AMI amazon Linux , In the SAME VPC I have an RDS database running


        I cannot even telnet over port 3306 to this RDS instance , I have added port 3306 on the network access list , in the security group and I am not sure where else I have to open port 3306 ?

        New to AWS and  confused

        I know the RDS aurora database is running and the connection string is right

        If I dig it
        [ec2-user@ip-172-xxx-4-103 ~]$ dig gs-db-instance1.cdtxxxtqfzr.us-east-1.rds.amazonaws.com

        ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.62.rc1.56.amzn1 <<>> gs-db-instance1.cdtmxxxxqfzr.us-east-1.rds.amazonaws.com
        ;; global options: +cmd
        ;; Got answer:
        ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 47907
        ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0

        If I telnet over port 3306 I get this
        [ec2-user@ip-172-xx-4-103 ~]$ telnet gs-db-instance1.cdtxxxxxxxxfzr.us-east-1.rds.amazonaws.com 3306
        Trying 172.xx.1.78...
        ^C
        0
        AWS AMI getting the below error in the logs.

        This seems to be tie with the intermittent nagios alerts.


        **Subject: PROBLEM jenkins/Memory is CRITICAL
        
        Notification Type: PROBLEM
        
        Service: Memory
        Host: jenkins
        Address: jenkins
        State: CRITICAL
        
        Date/Time: Fri Dec 15 09:36:12 UTC 2017
        
        Additional Info:
        
        ... has gone stale.
        

        Open in new window



        129260ms.
        Dec 15 11:13:47 ip-172-31-16-141 dhclient[2100]: DHCPREQUEST on eth0 to 172.31.1
        6.1 port 67 (xid=0x7a75a61f)
        Dec 15 11:13:47 ip-172-31-16-141 dhclient[2100]: DHCPACK from 172.31.16.1 (xid=0
        x7a75a61f)
        Dec 15 11:13:47 ip-172-31-16-141 dhclient[2100]: bound to 172.31.16.141 -- renew
        al in 1434 seconds.
        Dec 15 11:13:47 ip-172-31-16-141 ec2net: [get_meta] Trying to get http://169.254
        .169.254/latest/meta-data/network/interfaces/macs/0a:e8:9e:54:f4:81/local-ipv4s
        Dec 15 11:13:47 ip-172-31-16-141 ec2net: [rewrite_aliases] Rewriting aliases of
        eth0
        Dec 15 11:15:29 ip-172-31-16-141 dhclient[2184]: XMT: Solicit on eth0, interval
        117400ms.
        

        Open in new window

        0
        This holiday season, we’re giving away the gift of knowledge—tech knowledge, that is. Keep reading to see what hacks, tips, and trends we have wrapped and waiting for you under the tree.
        4

        AWS

        Amazon Web Services (AWS), is a collection of remote computing services, also called web services, that make up a cloud-computing platform  operated from 11 geographical regions across the world. The most central and well-known of these services include Amazon Elastic Compute Cloud, also known as "EC2", and Amazon Simple Storage Service, also known as "S3". Other services include Elastic MapReduce (EMR), Route 53 (a DNS web service),  provides a highly available and scalable Domain Name System (DNS) web service, Virtual Private Cloud (VPC), storage, database, deployment and application services.