Posted in 2021

The Foolproof Scones

These scones take max 30 mins to prep and cook and are very simple and enjoyable.

Read more ...


M5 Paper e-ink Calculator

I added an M5 Paper to my collection of dev boards and decided to make a basic calculator to teach my son to count. Since he is only a few months old he mostly uses it as an expensive teething device.

Read more ...


Python 3.10 tips

Handy tips and notes about Python 30.8 10, 11 and beyond.

Read more ...


Demystifying AWS IAM Policies: Unraveling De Morgan’s Laws and S3 Buckets Policy

As of September 2021 You will now get error messages that detail the source of a IAM access block for the following policy types:

Read more ...


Trust on Cloud AWS S3 Threat Model

Trust on Cloud have open sourced their AWS S3 threat model, this release is a great tool to make sense of the “shared responsibility model” and what “responsibility” means for AWS customers.

Read more ...


Monitoring VPN / Direct Connect Connectivity

In an on premise network it is typical to do some type of topology discovery via the MIB-II SNMP tables of all your network gear and then use ICMP to ping each of the discovered routers or switches respective management interfaces to validate connectivity and contribute to intelligence when parts of the network go dark and speed up root cause analysis.

Read more ...


TLS/SSL Certificate Authority (CA) Trust store verification

The CA trust store is how a TLS client establish trust with the servers offered certificates. Curl uses openssl and Python uses its own store (like Java). The store on my system is located here:

Read more ...


Running Amazon Linux 2 on prem on VMware

There is no default ec2-user or root password set for the Amazon Linux 2 ova. You must use cloud-init via it’s nocloud datasource

Read more ...


Error: The maximum number of rules per security group has been reached

How to deal with the error: “The maximum number of rules per security group has been reached.”

Read more ...


AWS API Gateway notes

How to make a private REST API using AWS API Gateway that is only accessible from inside a VPC.

Read more ...