Richard Fan

If you created a new #AWS account with #FreeTier

DO NOT follow the console recommendation to create IAM Identity Center with AWS Organization, it will EXPIRE all your free credit ❗❗❗

If you want to use IAM Identity Center, create it on account instance!

#AWSCloud #CostOptimization #AWSFreeTier

TIL, you only need write access on a #GitHub repo to manage variables and secrets, even under environment. No admin access required🫨

It's just that it can't be accessed via UI, you need to use API or gh cli

cli.github.com/manual/gh_va...
cli.github.com/manual/gh_se...

#devops #cicd #githubactions

I saw this debate on an Instagram post: www.instagram.com/reel/DI6SN7k...

Here's my solution, simple and clear
Why Americans love writing essay on traffic signs?

#RoadDesign #HighwayDesign #RoadSafety #SignDesign #RoadSign #TrafficSign

They have mention it in the credit section, the end of the README

But they also removed the previous versions from the CHANGELOG, making it looks like their release is the first version

Whether this is considered “Credit” is debatable but it just looks cheeky to me

Be more transparent about this project being a fork from other repo · Issue #65 · opentofu/vscode-opentofu Description This project is a fork of https://github.com/gamunu/vscode-opentofu But this is only being vaguely mentioned at the end of the README Credit section Most of the other famous forked proj...

Copying the entire repo of another project and publishing it as your own project, and just vaguely mentioning the original project at the end of the README

Is it a standard and good-faithful way of open-source projects???

#OpenSource #OpenTofu #GitHub #DevOps

github.com/opentofu/vsc...

IAM policy to block creating exportable ACM cert IAM policy to block creating exportable ACM cert. GitHub Gist: instantly share code, notes, and snippets.

If you don't want your team create any exportable ACM cert, you can use the IAM policy condition "acm:Export"

Example: gist.github.com/richardfan11...

#aws #awscloud #cloudsecurity #awsreinforce

AWS Certificate Manager introduces exportable public SSL/TLS certificates to use anywhere | Amazon Web Services You can now use AWS Certificate Manager to issue exportable public certificates for your AWS, hybrid, or multicloud workloads that require secure TLS traffic termination.

Good news, ACM cert can be exported and used outside AWS now
Bad news for security team: you probably want to block this action from most of your AWS account or set monitoring on it.

aws.amazon.com/blogs/aws/aw...

#aws #awscloud #awsreinforce #cloudsecurity

🚨 2 Cloud Security Conference Tickets 🎟️ for GiveAway! | Ashish Rajan 🤴🏾🧔🏾‍♂️ 🚨 2 Cloud Security Conference Tickets 🎟️ for GiveAway! 🚨 If you work in Cloud Security or want to work in Cloud Security living in the US, then this is for you. 👇🏾 Cloud Security Podcast is one of t...

2 free tickets to an absolutely amazing Cloud Security conference in the US

If you are (or know someone are) new to and want to learn cybersecurity, don't miss the chance

#fwdcloudsec #cybersecurity #CloudSecurity

www.linkedin.com/posts/ashish...

Badge picked up
Ready for tomorrow #Kubecon in Hong Kong

#CNCF #CloudNativeCon

Why is #terraform #aws provider documentation showing warning of "5.99.1 not the latest version" instead of "6.0.0-beta2 is a beta version"?

I thought people expect the latest stable version as the default instead of a beta one

AWS User Group Hong Kong A group created for true Cloud advocates - based around the leading Cloud offerings from Amazon Web Services (AWS) and the latest technology trends. If you're keen, or simply curious - join us (non-te...

The recordings of latest AWS User Group Hong Kong meetups are available on YouTube: youtube.com/@awsughk?si=...

Please consider like, subscribe and share!

#AWS #AWSCommunity #AWSUG #techmeetup

When could #f1 fix this issue?
They are coming to the pitlane under safety car, not changing tyres

#f1tv #Formula1 i

When could #f1 fix this issue?
They are coming to the pitlane under safety car, not changing tyres

#f1tv #Formula1

If you are university student and want to learn about Cloud, #AWS Cloud Clubs is a great program you should join. You can get a lot of supports from AWS and the community during your journey!

Deadline is 6 March. Apply now: 👉 community.aws/students

#AWSCommunity #AWSCloudClubs #CloudComputing

AWS UG HK BuilderCards Night – Level Up Your Cloud Strategy, Fri, Mar 7, 2025, 6:30 PM | Meetup 🚀 AWS UG HK BuilderCards Night – Level Up Your Cloud Strategy! 🎲 Get ready for an exciting gaming, learning, and networking evening at AWS UG HK BuilderCards Night! Whet

AWS UG HK BuilderCards Night – Level Up Your Cloud Strategy

#AWS #AWSUserGroup #AWSCommunity #AWSBuilderCards

meetu.ps/e/NSNXR/JTCD...

Kubestronaut was issued by The Linux Foundation to Fan Chun Yiu. Kubestronauts are people who showed exemplary Kubernetes knowledge by passing all five of CNCF’s Kubernetes-related certifications: Certified Kubernetes Administrator (CKA), Certified Kubernetes Appli...

#Kubestronaut achieved!!

#Kubernetes #CloudNative #CNCF

I was about to report bug, thinking CloudTrail is exposing sensitive information
Turned out, it's just another form of "HIDDEN_DUE_TO_SECURITY_REASONS"

How many other forms do AWS uses??? 😆

#AWS #CloudTrail #CloudSecurity

OWASP Non-human identities top 10 is released

The top of them is: Improper offboarding.

When I see many existing API keys created by an ex-employee who I've never met, I totally agree it's the risk that most of us are missing

owasp.org/www-project-...

#Cybersecurity #OWASP #CloudSecurity

YouTube video by Avoriaz Alpine Ski School How to look cool on the slopes 🤥😂 #skiingtips #skitips

Just go with the power plow and hope for the best😂
youtube.com/shorts/x91FC...

Have spent 8 days on flights this year

Living in a city where the time is ahead of most other places.

I love the events hosted towards the end of the week, so I can use the weekend to catchup the time I “lost” when flying back home, instead if wasting annual leave on the flight

Inconvenient Truth? 😨

As always, I visited #serverlesspresso last week in #AWSreInvent2024

➡️ Checkout how it works behind the scene: serverlessland.com/reinvent2022...

#AWSreInvent #AWS #AWSCloud #serverless

I'm on TV!!! 😆

That's my interview in #AWSreInvent last week

(Warning ahead, It's Cantonese 😁)

#AWSCommunity #AWS #AWSCloud #AWSreInvent2024

www.facebook.com/share/v/1KBB...

Don’t let her know
Otherwise, you’ll become the IT support

2 of the Europe cities I visited this year
Why didn’t it happen earlier? 😆

Last week was an exhausting #AWSreInvent week (both mentally and physically)

I attended 0 sessions this year, but having some much fun meeting new and old friends!!!

Now, I need to do editing for my videos

#AWS #AWSCloud #AWSreInvent2024 #AWSCommunity #preinventhike

Thank you @werner.social for the great shout out to the AWS Heroes ❤️ This is the smartest, friendliest, and simply *best* group of people I've ever been part of, and I am forever grateful for AWS' sponsorship 🙏

Time in distributed systems was impossible

But with precise clock, those compexity can be reduced

#AWSreInvent #AWS #AWSreInvent2024 #AWSCloud

“Automation should be the standard”

#AWSreInvent #AWS #AWSreInvent2024 #AWSCloud