I had an opportunity to take both exams related to those two most popular automation and configuration management frameworks.
Here are some thoughts about the Red Hat’s 405 (Puppet) and 407 (Ansible) exams.
FreeBSD’s kernel provides quite sophisticated privilege model that extends the traditional UNIX user-and-group one. Here I’ll show how to leverage it to grant access to specific privileges to group of non-root users.
Intrusion detection system (IDS) and intrusion prevention system (IPS) tend to be expensive and complicated. In AWS, you can go for much simpler solution – WAF. But that requires you to use Application Load Balancer or CloudFront. But even with WAF, you have to manage a list IP addresses of attackers that should be blocked. Or, if you only ever need to block single IPs for short periods of time, NACLs may be a much easier option! Here’s a walkthrough on how you can implement a terribly simple (yet very powerful) intrusion detection and prevention in AWS with Lambda and DynamoDB Streams for a web application.
If you’re still waiting for the results of the AWS Specialty Beta exams (Security, Big Data or Networking), you are not alone. The results and final versions of the exams were supposed to be released at the end of March. But March came and went, and we only got one small update from AWS.