Posts

Local DynamoDB Grew Up: A Hands-On Look at ExtendDB

DynamoDB Local has been the laptop stand-in for AWS DynamoDB since 2013. It's a Java JAR, runs in memory or against a SQLite file, accepts almost any request shape, has no real …

How I Found a Hidden Cloudflare Bug on a Sunday mid-night (The joy of curl)

It was supposed to be a quick weekend project. You know the kind: "I'll just spin up an egress VM, route some traffic through it, sip my ...

Why Your SSH Is Yelling About Quantum Computers (And How to Fix It)

You SSH into your server and see this:

** WARNING: connection is not using a post-quantum key exchange algorithm.
** This session may be vulnerable to "store now, decrypt later" …

IaC-First: Why I am Never Touch the AWS Console in Production

"Never touch the AWS console in production" sounds like an extreme rule. It is not. It is the most important operational discipline in a cloud-native team, and the cost of …

I dropped my Google Pixel 9 XL Pro from 6th floor balcony to the street

My phone slipped out of my hand and executed a textbook, no-hesitation, full-commitment dive from the 6th floor straight to the street.

AWS S3 New Feature: Re-encryption without Movement

The recent release of the UpdateObjectEncryption API marks a significant shift in how we manage data security at scale. Historically, changing the encryption of an S3 object was a …

I Built TrumpDaily to Track Donald Trump Without the Noise

Look, tracking Trump is exhausting. The man dominates headlines across BBC, Guardian, NPR, Al Jazeera, and even Babylon Bee. Checking 10+ ...

When Spotify’s Share-to-Instagram Flow Turns Into a Free Billboard

I dug into how Spotify generates story assets and wrote up the possible attack vectors + where the metadata pipelines might be vulnerabi...

AWS Monthly (Nov '25) The Stateful Serverless Revolution

November and re:Invent 2025 brought us the "holy grail" of serverless: AWS Lambda Durable Functions. This feature introduces...

When the Cloud Sneezes, the World Catches a Cold - Lessons from the us-east-1 Meltdown

Today, once again, half the internet went dark not because of a global power failure or a cyber-attack, but because a single AWS region, us-east-1 (N. Virginia), had a bad day. …

AWS Monthly (Sep '25): Vega OS & eBPF Observability

In a surprise move, AWS released Vega OS in September. Vega is a specialized, Linux-based OS optimized for the edge and high-performance UI...

AWS Monthly (Aug '25): Big Data, Zero Effort

August was all about "Data Gravity." Amazon Aurora storage limits jumped to 256 TiB, which effectively ends the "sharding" conversation for...

AWS Monthly (July '25): Kubernetes at the Edge of Sanity

July was a landmark month for the EKS (Elastic Kubernetes Service) crowd. AWS announced that EKS now supports 100,000-node clusters.

AWS Monthly (May '25): The Death of the War Room

May brought CloudWatch Investigations, which have fundamentally changed someone's on-call rotation. Instead of manual log correlation, ...

Automating AWS CloudWatch Log Group Tagging with Python and Boto3

Managing tags for AWS CloudWatch log groups is crucial for operational visibility, cost management, and effective resource organization. Tagging log groups manually can be …

Automating AWS ECR Tagging with Python and Boto3

Proper tagging of AWS resources is critical for efficient resource management, cost allocation, and auditing. If you have numerous AWS Elastic Container Registry (ECR) …

Automating ECR Image Cleanup with Bash

Managing container images in Amazon ECR (Elastic Container Registry) is crucial for keeping your registry clean and cost-effective. Over time, unused or deprecated images can …

Update ECR Repositories with Bash Script

Below is an example Bash script that uses the AWS CLI to retrieve all your Amazon ECR repositories and then sets the image tag mutability of each repository to MUTABLE. Before …

Why Automated Tests Are Essential in Your CI/CD Pipeline and Development Flow

Let’s talk about a scenario we’ve all been in: you’ve just wrapped up a shiny new feature, you’re excited to merge it in, and, boom, something breaks in production that you didn’t …

AWS Monthly (April '25): Cooling the AI Heat

In April, AWS gave us a peek behind the curtain of their data center engineering. To handle the thermal output of the latest AI clusters, ...

AWS Monthly (Mar '25): The Proximity Power Play

Technically, this brings "Single-Digit Millisecond Latency" to almost every major tech hub. If you are building AR/VR backends, indust...

Streamline Your AWS ECR Management with This Powerful Bash Script

Managing container repositories in AWS ECR (Elastic Container Registry) can quickly become a daunting task, especially as your infrastructure grows. In this article, we’ll take an …

AWS Monthly (Jan '25): Shattering the 6MB Ceiling

We kicked off 2025 by addressing one of the oldest "bottleneck" complaints in the serverless community. For years, the 6MB payload limit for synchronous Lambda calls forced us into …

Setting up DKIM for Google Workspace (Gmail) using Terraform and AWS Route 53

DKIM (DomainKeys Identified Mail) is a critical email authentication technique that helps prevent email spoofing. By using DKIM, you ...

Automate AWS Site-to-Site VPN Monitoring

That’s exactly why I created the AWS Site-to-Site VPN Monitoring Script, a tool designed to automate the monitoring of VPN connections ...

Optimizing Docker Images: Tips for Reducing Image Size and Build Time

Hey, fellow Docker enthusiast! If you're here, you probably love Docker as much as I do, spinning up containers, packaging applications ...

Monitoring EC2 Disk Space with a Simple Bash Script and Slack Alerts

In the cloud infrastructure landscape, monitoring the health and resources of EC2 instances is essential. One common challenge for system...

Securing Docker Containers: Best Practices for Container Security

When we talk about containerization, Docker is often the first tool that comes to mind. It's revolutionized how we develop, ship, and ...

Mastering Dockerfile: Writing Efficient, Scalable Container Builds

Docker has revolutionized the way we develop, package, and ship applications. At the heart of this container magic is the Dockerfile, the ...

Migrating a Git Repository from GitLab to GitHub with GPG-Signed Commits

In today's DevOps-driven world, version control systems like Git are the backbone of software development. GitLab and GitHub are two of ...

Accessing AWS Services in Private Subnets Without 0.0.0.0/0

When working with AWS (Amazon Web Services), securing your infrastructure is paramount. One of the most common security practices is to ...

Understanding AWS Regions, Availability Zones, and VPCs: A Comprehensive Guide

In today's cloud computing landscape, Amazon Web Services (AWS) has established itself as a leader, offering a wide range of services to ...

AWS Network Load Balancers with Header Modification Techniques

AWS Network Load Balancers (NLBs) are a powerful tool for distributing incoming application traffic across multiple targets...

How to call multiple terraform modules in a single terragrunt file

in Terragrunt, you can call multiple Terraform modules from a single Terragrunt configuration file by using the terraform block in combi...

Leveraging Git Hooks for Enforcing Commit Message Standards: A Guide for Cross-Platform Development Teams

In the world of software development, maintaining a clean and navigable commit history is not just a matter of neatness but a cornerstone of efficient teamwork and project …

Simplifying SSL with Let's Encrypt and CLI.ini: A DevOps Guide

In the vast expanse of the internet, security is not just a luxury; it's a necessity. For web developers and system administrators, ...

TCP vs. UDP: Navigating the Protocols as Developers and DevOps

Understanding TCP and UDPBefore we dive into the differences, let's briefly understand what TCP and UDP are ...

AWS VPC IP Versions: IPv4 vs. IPv6

So, buckle up as we unravel the mysteries of IPv4 and IPv6 within AWS VPC, serving you a platter of insights, examples, and detailed ...

AWS S3 CORS Settings: A Deep Dive

Whether you're a seasoned AWS veteran or just starting, mastering CORS settings in S3 can greatly enhance your web applications' functiona...

Importance of Regions and Availability Zones on AWS

We're diving into a pivotal aspect of architecting robust, resilient, and efficient applications on Amazon Web Services (AWS): understand...

The Power of Bash For Loops: Streamlining Your Scripting Tasks

In the world of scripting and automation, Bash stands out as a versatile and widely-used shell in Unix and Linux systems. Among its ...

AWS VPC Design: Integrating Subnets, AZs, and Dual-Stack IP

Virtual Private Cloud (VPC) in AWS, meticulously weaving together subnets, availability zones (AZs), and the dual-stack configuration for...

7 Reasons to Consider Getting a Smartwatch

You have probably noticed a fair few people walking around with smartwatches. The trend might be causing you to scratch your head, trying to figure out what the fuss is all about. …

How to Enable SSH on Ubuntu: A Step-by-Step Guide

Secure Shell (SSH) is an essential tool for system administrators, developers, and IT professionals. It provides a secure way to access ...

Vim: Mastering the Essentials for Efficient Editing

In the world of text editing, Vim stands out as a powerful, keyboard-centric editor that prioritizes efficiency and speed. Originating ...

Understanding CAA DNS Records: What, Why, and How?

CAA, or Certificate Authority Authorization, is a type of DNS record that allows domain owners to specify which Certificate ...

Mastering AWS VPC: An Introduction to Virtual Private Cloud Routing

The world of cloud computing has never been more accessible or diverse. As organizations migrate to the cloud, AWS ...

Understanding the New AWS Public IPv4 Address Charge and Public IP Insights

Hello everyone,

I wanted to share some important updates from Amazon Web Services (AWS) that could impact how you use their services. AWS has announced a new charge for public IPv4 …

Docker Multi-Stage Builds: An In-depth Guide

Introduction

Docker has revolutionized the way we develop, package, and deploy applications. It provides a consistent environment for applications to run, from development to …

Mastering Docker Run Command: A Comprehensive Guide

The use of Docker in contemporary software development is widespread, and for good reason. Docker helps developers build lightweight and portable software containers that simplify …

MySQL 8: Understanding and Fixing Error 1819

As a beginner in MySQL, you might encounter an error message that reads "ERROR 1819 (HY000): Your password does not satisfy the current ...

Ctrl+C and Ctrl+V party with GitHub Clone Helper!

When you copy the clone URL, you're actually copying the entire 'git clone' command. It's the Ctrl+C and Ctrl+V party you always wanted ...

Unveiling the Mystery: Decoding IP Address Retrieval in Linux

Understanding how to retrieve an IP address in Linux can be a bit tricky, especially for beginners. The good news? It's not as complicated...

The AWS Well-Architected Framework: A Key to Cloud Success

The cloud has revolutionized the way businesses operate, and Amazon Web Services (AWS) has consistently led the charge in cloud ...

Telnet Movies - A Nostalgic Look at the Dawn of Internet Movie Streaming

Long before Netflix, Hulu, and Amazon Prime Video transformed the way we consume content, there was a fascinating, lesser-known method...

Secure Your Media Files by Removing Metadata with AWS Lambda

Enhance privacy and security across various industries by stripping EXIF and other metadata from uploaded images and videos

CORS in Nginx: Configuration Guide for Enhanced Security

Cross-Origin Resource Sharing (CORS) is a crucial mechanism for enabling secure communication between web servers and browsers.

List your S3 bucket objects easily with S3 Directory Listing

Introducing S3-Directory-Listing, a simple and easy-to-use JS script and HTML combo that will turn your S3 bucket directory listing into ...

Keeping Composer Packages Up-to-Date with Composer Guardian: Why It's Essential

As a PHP developer, chances are you're already familiar with Composer, the dependency manager for PHP. It's an essential tool for managing packages, streamlining updates, and …

What is Carrier Gateway on AWS?

Amazon Web Services (AWS) offers many services to provide a seamless and secure cloud computing experience to its users. One of these ...

Creating SSH Keys for Secure Access to AWS EC2 Instances with Terraform

When working with cloud infrastructure, security is of utmost importance. One critical aspect of security is controlling access to cloud ...

What is an Egress only internet gateways in AWS?

Within a VPC, an Egress-Only Internet Gateway is an essential component that enables outbound traffic from the VPC to the Internet.

What is an Internet Gateway in AWS?

Amazon Web Services (AWS) Internet Gateway is a horizontally scalable, redundant, and highly available VPC component that allows communication between instances in your VPC and the …

What are Route Tables on AWS VPC?

Route tables in Amazon Web Services (AWS) are used to determine how traffic is directed within a Virtual Private Cloud (VPC). They contain a set of rules, known as routes, that …

What is Subnet on AWS VPC?

Subnets in AWS VPC are used to divide a VPC into multiple logical networks. This allows users to isolate resources and control access to ...

What is AWS VPC?

Learn about Amazon Web Services (AWS) Virtual Private Cloud (VPC), a service that allows users to create and manage their own virtual pri...

Prevent nginx from caching DNS for proxy

If you are having problems with nginx proxy DNS caching, you can see the config for flush and/or clear DNS caching continuously...

Scaling PHP Applications on AWS

You can understand the running highly available, performant, and secure PHP applications on AWS with easy 14 steps...

Create an S3 Bucket and Set a Policy via CLI

I really like to use CLI commands and it's my daily routine. Today, I'll tell to you "How do you create an S3 Bucket on AWS" and "Put an ...

Issue a Let's Encrypt SSL with the AWS Route53

In this article, I want to tell you how you can issue a Let's Encrypt SSL with the AWS Route53 service. Let's start to learn.

Automate Let's Encrypt SSL on AWS Application Load Balancer

In this article, you can automate all of Let's Encrypt issuing operations for AWS Application Load Balancer and learn how you can manage the..

Deploy a website to S3 and CloudFront with Bitbucket Pipelines

In this article, you will learn how you can deploy your static website to the S3 Bucket and Cache Invalidation automatically...

Protect your AWS Account with specified IPs

You will learn, how you can protect your AWS account and the resources in the cloud with IAM Policy. Security is the first th...

Differences between AWS CLI v1 and v2

Sometimes, aws-cli doesn't run your cli commands if you are using v1. If your aws cli is v1, I should recommend updating. In this article, you'll learn in which conditions you …

SSL CA Problem on CentOS7 Docker and Solution

When I'm playing with CentOS7 docker image on MacBookPro M1, it looks like it doesn't connect to the servers which require HTTPS connection.

For example, when I run yum -y update …

What do I have?

Apple MacBookPro M1, Dell XPS13 4K, Juniper SRX-110, Xiaomi 4A Router, Dell Pivot Monitor, Logitech MX Keys, Logitech MX Master 3.

I'm officially AWS Community Builder!

This morning, I've got an e-mail from @JasonDunn about the AWS Community Builder program. I don't remember when I applied to this program but

Deploy HA nginx to AWS ECS with Geolocation Routing via Terraform

You can deploy the nginx docker image in two different regions in AWS. If you need, you can add more region support by yout self...

Deploy nginx docker to AWS ECS with Terraform Automation

You can understand how you can deploy nginx docker to AWS ECS with terraform easily. The terraform will handle everything what you need.

How to Install Node Exporter on Linux Server

You can monitor your Linux Server easily with Node Exporter. Node Exporter installation it little bit different but just follow the article..

FortiClient Problem on M1 MacBookPro Problem Solution

I found a quick fix solution for FortiClient VPN client connectivity issue with Apple M1 MacBookPro. It's not a big deal...

Connect your AWS to GCP with Terraform via IPSec Site-to-Site VPN

You can deploy the VPN infrastructure easily with this article. Terraform is a automation tool you can do everyting in the cloud era.

Google Cloud Platform Automation with Terraform Easily

You can deploy your load balancer, instance template, instance group and firewall rules easily with terraform.

How to secure your Amazon Web Services account

Learn how to secure your Amazon Web Services account. Root level account has got full access to all resources running in the cloud enviro...

Install UGREEN USB Ethernet Adapter on macOS

Today, I need to connect my Apple MacBookPro Silicon to the internet via the same USB adapter but macOS doesn't like this.

Redirect 301 HTTPS on App Engine with nginx on Google Cloud Platform

You can learn how to redirect http requests turn to https easily. AppEngine and nginx will work smoothly after this tutorial.

Set two different Target Groups on AWS Load Balancer with Terraform

You will learn how you can use more than one target group behind Elastic Load Balancer in aws services with Terraform.

Extend your ec2 Linux disk without reboot on Amazon Web Services

Just follow the steps and learn how to extend without reboot. Normally, It's realy hard to extend the Linux servers root disk.

Create a New Grant User on AWS RDS (MariaDB)

You will learn, how to create a grant user for your RDS. It's little bit complicated process but just follow the article and know.

Amazon S3 CORS Settings with CloudFront on Amazon Web Services

Learn how to set for your aws S3 Bucket CORS settings on CloudFront in Amazon Web Services. CORS settings is taking security for your bucket.

Take your GitLab backup everyday if it works in Docker

Learn how to automate your Docker GitLab backup. You should make a backup for your repository security. Let's automate the process...

Find large files in CentOS, ubuntu and MacOS easily

Sometimes, it's really hard to find the big files path Linux. In this tutorial, you will learn how you can find it easily.

Fix "Error: rpmdb open failed" on CentOS or Amazon Linux 2

If you having rpmdb issues with your yum, you can easily follow the same steps and fix your package manager in a minute.

Error: No space left on the device when starting/stopping services only

Learn how to fix "No space left on the device" error when starting and/or stopping services only on Amazon Linux 2

Juniper SRX110H-VA VDSL2 Configuration Step by Step

Set a VDSL2 connection for Juniper SRX-110 easily. I've already created a main configration and you can use if you need. Just edit few lines..

Enable Logrotation for Docker Containers

Docker on your system, the container running in the docker can generate a large number of logs while you are not aware of the background.

Download specific file extension via wget easily on terminal

Sometimes, there may be files with more than one extension in a directory or folder. For example, .jpg, .png, .gif, .mp3, .mp4 etc.

Find the exact size of certain files in Linux via terminal

You may be wondering about the size of these files or just want to see the size of the files with the corresponding extension for a ...

Disable SELinux on CentOS 7 or CentOS 8

This tutorial shows you how you can disable SELinux on your CentOS server. The CentOS version should be CentOS 7 or CentOS 8.

Hello Blog!

My blog address contains my first name and my last name. So, you know my name I guess : )