Category Archives: Tech.

AWS S3 Bucket Policy to Only Allow Encrypted Object Uploads

Posted on February 7, 2017 by Jay V

Amazon S3 supports two types of encryption (server-side-encryption or SSE) for security of data at rest — AES256, and AWS/KMS. AES256 is termed as S3-managed encryption keys [SSE-S3], whereas, KMS is termed, well, SSE-KMS where in the customer manages their … Continue reading →

Posted in Amazon Web Services, Tech. | Tagged aes256, aws, bucket, deny, encryption, iam, kms, objects, policy, s3, sse, uploads | Leave a comment

DC/OS Exhibitor on S3 – Issues & Workarounds

Posted on December 22, 2016 by Jay V

If you want basic resiliency around your DC/OS master nodes when hosting them on AWS, you’ll want to have Exhibitor store its data in AWS S3. In order to do so, you’ll want to grant S3 IAM roles to your … Continue reading →

Posted in Amazon Web Services, Linux, Tech. | Tagged aws, backend, dcos, exhibitor, lock, null, s3, zookeeper | Leave a comment

DC/OS Kill Mesos Framework

Posted on December 8, 2016 by Jay V

You want to kill a Mesos framework but you’ve no idea how? You’ve looked at this page but it still doesn’t make sense? Then here’s what you need to do to kill a framework on Mesos. In my case, I … Continue reading →

Posted in Tech. | Tagged dcos, framework, hang, kill, mesos, spark, teardown | Leave a comment

[How To] Java Heap Dump and Stack Trace

Posted on December 5, 2016 by Jay V

Here’s how you can quickly get java heap dump and stack dump on Amazon Linux with Java 8. Your mileage with these commands may vary. First, find the process ID (pid) and user for the java process that you want … Continue reading →

Posted in Linux, Tech. | Leave a comment

S3 access from VPC or Corporate IP

Posted on November 30, 2016 by Jay V

If you’ve been wanting to allow HTTP access to your favorite S3 bucket from your VPC and/or from your corporate LAN’s public IP, then this blog could help make your job easier. At the end of this, you will be … Continue reading →

Posted in Amazon Web Services, Tech. | Tagged aws, bucket, corporate, endpoint, policy, s3, vpc | Leave a comment

Programmatically Trigger Travis Builds on GitHub

Posted on October 11, 2016 by Jay V

Our code for this specific project (which is on GitHub) is designed to handle infrastructure creation and rebuilds. For this purpose, we wanted to to be able to trigger our Travis builds for specific branches via simple Bash scripts, based … Continue reading →

Posted in DevOps, Tech. | Tagged aws, bash, builds, cli, DevOps, github, token, travis, Trigger | Leave a comment

Automating IAM Instance Profile with Ansible

Posted on June 30, 2016 by Jay V

My previous post talked about creating AWS IAM Instance Profiles so you don’t have to save keys on the instances. In this post, we’ll look at using Ansible to launch EC2 instances with IAM Instance Profiles attached to them (you … Continue reading →

Posted in Amazon Web Services, Tech. | Tagged arn, aws, iam, instance, passrole, permissions, policy, profile, user | Leave a comment