loading...
ExamPro profile image ExamPro

AWS White Paper Walkthrough - Security Overview of AWS Lambda March 2019

twitter logo github logo Updated on ・1 min read

This AWS White Paper was just announced a few days ago by Jeff Bar and its on the Security of AWS Lambda. I don't know about you but I find it quite the chore to read through white papers so I made a video extracting out the important information while also contextualizing with examples.

If you want to see any specific AWS White Papers receive the treatment of a video walkthrough comment on down below.

twitter logo DISCUSS (2)
We create AWS training and certification study material served in our very own LMS.
markdown guide
 
 

The Instance

When you create an instance you can provision it yourself by following an online tutorial to install wordpress or you can choose from the marketplace (eg. AWS Marketplace or Digital Ocean Marketplace) an instance that already has Wordpress installed. I always suggest that later because these companies specialize in to ensure the server is hardened and avoids common exploits related to Wordpress.

So here you can see in the AWS Marketplace that have 121 vendors that offer Wordpress which can be free or cost a monthly subscription for them to keep the instance up to date.

So by paying $10 USD extra per month, you can get a very secure regularly maintained Machine Image.

AWS has more options and better vendors, and on AWS you can get started with the free tier.

WAF

Another thing you want to consider is a Web Application Firewall (WAF) which can filter out bad traffic. If you have a website it's making serious money you should have a WAF. Many times WAFs are bundled with CDNs and DDoS mitigation.

As far as I know, Digital Ocean only has a Network Firewall as a managed service and not a WAF. WAFs are more much more intelligent over Network Firewalls. You can't use AWS WAF with Digital Ocean because AWS WAF only works with two AWS services CloudFront and Application Load Balancer.

In the AWS WAF marketplace they already have managed rules you can purchase for a vendor something like 20 USD per month which will give you really good protection.

If you wanted to use a WAF with CloudFront you would need to use a third-party service such as Akamai.

If this a serious business and you need fine tune control of your security than AWS makes more sense. If this is a hobby project and you don't want to think too much about dev-ops Digital Ocean is straight forward and easier to use.

Classic DEV Post from Jan 24

What was your win this week?

Got to all your meetings on time? Started a new project? Fixed a tricky bug?

ExamPro profile image
We're AWS Obsessed!

We are AWS Obsessed and create both free and paid learning material.
We have study material for all 10 AWS Certifications on our custom LMS platform with flashcards, white paper summaries, journey paths and exam simulator.

👋 Hey dev.to reader.

Do you prefer sans serif over serif?

You can change your font preferences in the "misc" section of your settings. ❤️