Cloud Security

Below you will find pages that utilize the taxonomy term “Cloud Security”
The Key Factor Behind TablePlus's DDoS Resiliency
April 23, 2024
The Key Factor Behind TablePlus's DDoS Resiliency

How TablePlus survived a DDoS attack at zero cost by using Cloudflare R2 instead of AWS S3. The same attack on AWS would have cost $650+ in bandwidth charges. …

Read more
Ultimate Guide to Fail at Least Privilege in Cloud (and the Hard Lessons I Learned)
February 26, 2024
Ultimate Guide to Fail at Least Privilege in Cloud (and the Hard Lessons I Learned)

Real-world mistakes and hard lessons from implementing least privilege in cloud, from treating it as binary to lacking rollback mechanisms in automation. …

Read more
Beyond the Basics: AWS WAF's Lesser-Known Limitations
September 13, 2023
Beyond the Basics: AWS WAF's Lesser-Known Limitations

Lesser-known AWS WAF limitations from production experience: 8 KB body inspection limit, inflexible rate-limiting, sensitive header logging, and more. …

Read more
My Key Takeaways from AWS re:Inforce 2023
June 27, 2023
My Key Takeaways from AWS re:Inforce 2023

Key takeaways from AWS re:Inforce 2023, covering zero trust, data security, incident response, and new launches like CodeGuru Security, Security Lake, and Bedrock. …

Read more
The Risk You Can't Afford to Ignore: AWS SES and Email Spoofing
May 11, 2023
The Risk You Can't Afford to Ignore: AWS SES and Email Spoofing

Verifying a domain in AWS SES lets any IAM user with SES permissions spoof emails from any address on that domain. Here's the risk and how to fix it. …

Read more
My Love/Hate Relationship with Cloud Custodian
April 10, 2023
My Love/Hate Relationship with Cloud Custodian

A year of production experience with Cloud Custodian. Its strengths in real-time detection and auto-remediation, and its pain points in docs and multi-account setup. …

Read more
© 2026 Chandrapal Badshah. All rights reserved