AWS and other interesting stuff


Using IAM Roles is one of the most important security measures you can take when running systems on AWS. They let you use short-lived credentials to access AWS resources rather than long-lived credentials. In this blog I'll explain why short-lived credentials are important from a security perspective, and I'll investigate the use of roles in combination with Multi-Factor Authentication (MFA) when using the command line (CLI). Are roles and MFA worth the hassle? How much extra effort is there on the users' part? How does this setup affect user activity logging?