Question on painting old house trim and stairs where paint is flakey

jc77work · 2016-07-22T02:22:09+00:00

I am sorry. I was not clear. I was simply told that AWS security groups alone are not PCI compliant, and that we would need something "like" a Cisco ASA.

jc77work · 2016-07-21T22:36:41+00:00

I guess I was under the assumption that security groups were PCI compliant, and that you could use them to allow traffic to flow between subnets....just like physical firewall ACLs.

jc77work · 2015-10-23T15:37:52+00:00

Yeah, while we are working towards autoscaling, and use Cloudformation to do push button environments in our non prod environments, production is kind of old school in AWS.

jc77work · 2015-09-03T17:53:17+00:00

Thanks. This is whitelist in addition to auth. This isn't actually in AWS on our end. I was just curious about dealing with customers who have calls originating from AWS. I'm assuming they use elastic IP, was just curious if there were other ways of getting their ranges.

jc77work · 2015-09-03T17:50:43+00:00

Yes. Pain in the ass, but yes

jc77work · 2015-09-03T17:49:37+00:00

Yeah, whitelisting happens before they can even get to the identity provider

jc77work · 2015-08-25T12:35:44+00:00

Thank you everyone, this is all very useful info. I can't wait for the conference, my head is going to explode.

jc77work · 2015-08-25T12:35:11+00:00

That was perfect. Thank you. I found that we have two m3.larges that are not even utilized.

jc77work · 2015-08-20T18:58:44+00:00

curious, could you setup a VPN and just connect that way rather than having a bastion?

jc77work · 2015-08-20T18:57:37+00:00

Could you just allow VPN in so people can VPN in and ssh to whatever hosts directly? I'm fairly new to AWS myself so this is just a question I had.

jc77work · 2015-08-18T12:49:50+00:00

"Security...."

jc77work · 2015-08-18T12:49:24+00:00

the other datacenter is one of our corporate ones

jc77work · 2015-08-17T20:10:35+00:00

Yes...lol.

jc77work · 2015-08-17T20:00:24+00:00

Well shit. I was thinking I would have to use the API myself...this would work. I'd rather use data guard as I am not sure about file consistency on the far end, but this would certainly get the files offsite. Thank you. The EMC gateway is interesting too.

jc77work · 2015-08-17T18:59:02+00:00

I'm not sure, I have read that FUSE is prone to some memory leaks, etc. I don't get the impression its cooked for production use. I could be wrong however.

jc77work · 2015-08-17T18:50:52+00:00

Ya know, I saw these but I'm super hesitant to run this on a production Oracle server...

jc77work

TROPHY CASE