Amazon VPC is not a network and does not provide a measure of security

A VPC, or virtual private cloud, does not offer security. It is only a container, inside which subnets are created. AWS resources are launched inside of a subnet. EC2 instances make use of Security Groups for their security. Subnets provide an additional layer of security in the form of Network Access Control Lists. The combination of Security Groups, and Network ACLs are what provide security to EC2 instances. VPCs themselves are not networks, and AWS resources cannot be placed inside of them (other than subnets, Internet Gateways, and VPC endpoints, none of which the customer is required or expected to “secure”)

Installing Ansible on Cygwin

From cygwin install:

(if you cannot find python-something then search for python2-something)

  • python-jinja2
    python-markupsafe
    python-setuptools
    python2
    python2-appdirs
    python2-asn1crypto
    python2-backports.ssl_match_hostname
    python2-cffi
    python2-chardet
    python2-cryptography
    python2-devel
    python2-docutils
    python2-enum34
    python2-idna
    python2-imaging
    python2-ipaddress
    python2-lockfile
    python2-lxml
    python2-markupsafe
    python2-openssl
    python2-packaging
    python2-pip
    python2-ply
    python2-pyasn1
    python2-pycparser
    python2-pygments
    python2-pyparsing
    python2-requests
    python2-rsa
    python2-setuptools
    python2-six
    python2-urllib3
    python2-wheel
    python2-yaml
    gcc-core

Then open cygwin, and run:

pip2 install ansible

Moved blog to AWS

I have just migrated my blog from my previous host j u s t h o s t to Amazon Web Services. Even on just a humble T2.micro, the speed is noticeably quicker. I have MySQL running on the same host, with no load balancers, and just an Elastic IP Address and Route 53 A Record pointing to it. I still need to figure out a way to automate a daily Ec2 Snapshot, with deletes after 14 days.