In a previous blog post, we have seen how to enable SSM Session for EC2 instances to ditch SSH and enable safe and secure shell access. In this blog post, we will go one step further towards security and encrypting our SSM sessions from EC2-managed nodes and the local machines of users with the help of the KMS key. Creating the KMS key To encrypt the sessions in SSM, we will first need to have the KMS key....

To access EC2 instances, SSH has been the preferred way for many years. But this way has its downsides, such as managing the keypairs, etc. Recently, I came across a new safe and secure way to access instances, even from a Web browser and from the terminal, which is SSM. Let’s learn more about SSM and how to set it up. What is SSM? SSM stands for Systems Manager, a set of tools such as Session manager, State manager, patch manager, etc....

In a previous blog post, we have seen how to enable SSM Session for EC2 instances to ditch SSH and enable safe and secure shell access. In this blog post, we will go one step further towards security and encrypting our SSM sessions from EC2-managed nodes and the local machines of users with the help of the KMS key. Creating the KMS key To encrypt the sessions in SSM, we will first need to have the KMS key....

As we know, Terraform supports S3 as a backend to store the state in AWS. In GCS and Azure, there are equivalent solutions for object storage available. What if we want to store terraform state in our environment or on any other cloud provider? The good news is that we can do that, as all we need is S3-compliant storage. An example can be: Minio: minio is S3 compatible Opensource Object storage Civo Object store: I have already shared a blog post for the same here For this example, we will use minio:...

A few days back, I came up with the idea of awsctl CLI which will be kubectl style and will be easy to generate information about aws resources. I decided to live stream the development of the project so that it will help beginners to understand the process and lifecycle of the OpenSource project and will help the audience to learn how to write the CLI tool. here’s the summary of first(16th Feb 2023) stream:...

In Golang, implementing basic authentication in an HTTP API request is relatively straightforward. Once we construct the request, then we have to call the SetBasicAuth() method and pass username & password package main import ( "fmt" "io/ioutil" "log" "net/http" ) func main() { client := &http.Client{} req, err := http.NewRequest("GET", "http://google.com", nil) if err != nil { log.Fatal(err) } req.SetBasicAuth("admin", "password") resp, err := client.Do(req) if err != nil { log....

Recently, Civo Cloud launched an object store that is object Storage and S3-compatible. Read more about it here: https://www.civo.com/learn/using-civo-object-stores In my Cloud Heist - Civo series on youtube, one of the viewers asked how we can store terraform state in the bucket, similar to how we do in AWS space. Here’s the solution for the same, Let’s create the object store resource "civo_object_store" "statefile" { name = "state" max_size_gb = 500 region = "LON1" } Now apply this config....