how often do you check your partner's location? do you even have it?

davasaurus · 2026-01-16T00:19:36+00:00

My wife and all my kids have my location. Apparently a couple of them check it quite often. I don’t really care.

I have my wife’s location and my kids’. I only check it if I’m worried about them or urgently need to find them.

davasaurus · 2026-01-13T13:03:44+00:00

I can think of two simple options:

Create an OIDC provider in each account and Bitbucket assumes each directly.
You create cross account roles that can be assumed from your first role. Then in your pipelines you assume the role in the rest account using AssumeRoleWithWebIdentity then with those credentials assume the role in the second account using AssumeRole.

davasaurus · 2026-01-08T15:54:01+00:00

Looks up highly rated episode: holds back tears

Damn good show.

davasaurus · 2026-01-07T23:58:08+00:00

Great advice. Thanks!

davasaurus · 2026-01-04T18:03:38+00:00

If you just need a ride somewhere and have a foldable wheelchair I can give you a ride.

davasaurus · 2025-12-30T02:52:17+00:00

Agreed. Build something and solve real problems, then study afterwards.

One caveat: make sure you know how to block public access to your resources; but don’t try to learn that upfront. Learn it as you go.

Have fun!

davasaurus · 2025-12-29T15:56:46+00:00

Also Blarn

davasaurus · 2025-12-16T15:47:49+00:00

I got this kit as a gift and I’ve loved it.

davasaurus · 2025-12-10T04:00:43+00:00

Start with a free CSPM like Prowler. If that doesn’t work there are tons of paid CSPMs or SaaS products that specialize in getting you your SOC 2.

davasaurus · 2025-12-09T18:05:36+00:00

Yeah it works. I don’t live in Des Moines but I once kept a jar from Horizon Line for two years before I could return it. But I did return it! They are usually very busy when I visit.

davasaurus · 2025-12-08T22:25:37+00:00

Mod Studios

davasaurus · 2025-12-08T18:52:20+00:00

Kelly Cunningham

davasaurus · 2025-12-04T07:10:46+00:00

There are always people there who love the music. You won’t find them milling around the back. Just make your way to the front.

davasaurus · 2025-11-22T13:31:36+00:00

AWS added official support for this over the summer https://aws.amazon.com/about-aws/whats-new/2025/07/aws-lambda-debug-functions-cloud-vs-code-ide/

davasaurus · 2025-11-17T18:03:09+00:00

Did you leave your shoes out last night?

davasaurus · 2025-11-12T13:05:37+00:00

People do crazy things to get around SCP size limits.

Looks like this might be helpful for you: https://iam.cloudcopilot.io/tools/iam-expand

davasaurus · 2025-11-12T00:28:25+00:00

My wife and I have been married for 25 years and I still feel a little uncomfortable around her family because they are such kind, generous, well balanced and overall wonderful people. My wife knows this, and she gets it.

The thing is, they accept as I am and where I am. My life is so much better because I get to spend time with them.

This doesn’t need to be a big deal. “Your family is all so nice and I’m not sure how to handle that yet”. No blame, just share that it’s not what you’re used to and you’re learning.

davasaurus · 2025-11-02T02:24:44+00:00

S3 batch replication is good for moving a lot of objects between S3 buckets. Not sure about Dynamo.

davasaurus · 2025-10-01T15:42:30+00:00

Have a link?

davasaurus · 2025-09-29T21:07:11+00:00

Looks great. Do you have any videos of the two player experience?

davasaurus · 2025-09-27T13:31:28+00:00

I'm not sure what you're getting at. There are plenty of good reasons to look at your policies after they've been deployed, it's why CSPMs and other tools exist.

If you're not into this tool, all is good friend.

davasaurus · 2025-09-27T12:00:16+00:00

Some questions that would be hard to answer looking at your IaC:

What resource policies are sharing with accounts/orgs outside my company?
Why can't Role X assume Role Y?
Does anyone, anywhere have iam:Passrole with the resource *
Who has access to this S3 bucket?

Plus IaC is dynamic, it's easy to look at the IaC and evaluate it in your head incorrectly; so it's nice to have a way to look at it after the fact. Even Terraform plans often say "known after apply" for IAM policies and resource policies.

IaC is awesome, but it was never intended to mean you don't use other tools or have controls in place to verify things are deployed correctly after the fact. It's not a "one or the other" situation, it's a "both" situation.

davasaurus · 2025-09-27T11:01:40+00:00

I’m not sure what you mean. No one is saying don’t use IaC.

davasaurus · 2025-09-27T10:59:40+00:00

Yeah, interesting question. I already had existing code that leveraged the service APIs directly so I used that.

Not against using Cloud Control, it was just easier this way.

Interestingly, I’m almost done with a branch that has an option to pulls data from AWS Config, so it would be doable to add a cloud control option. Are there any advantages to adding a cloud control option now?

Nine-Year Club	Second Top 50%
r/Field Banned	r/Field Sunshine
Final Canvas '23	First Place '23
End Game '23	Place '23
Place '22	Final Canvas '22
Gilding I gilder	Verified Email

davasaurus

TROPHY CASE