From 7ba3eb22ccd8fecc315255b0283ee97b93312254 Mon Sep 17 00:00:00 2001 From: Joshua Levy Date: Sat, 16 Jul 2016 22:17:40 -0700 Subject: [PATCH] Mention Inspector. A few minor cleanups. Fixes #16. --- AUTHORS.md | 6 +++--- README.md | 9 +++++---- admin/authors-info.yml | 4 ++-- 3 files changed, 10 insertions(+), 9 deletions(-) diff --git a/AUTHORS.md b/AUTHORS.md index 39f4327..4bc7295 100644 --- a/AUTHORS.md +++ b/AUTHORS.md @@ -1,8 +1,8 @@ # Authors -This work is a collaborative effort that has benefit from contributions and review of many people. +This work is a collaborative effort. It was begun and is edited by [@jlevy](https://github.com/jlevy) and [@ThanosBaskous](https://github.com/ThanosBaskous). -The following people (in alphabetical order) have contributed or reviewed this or earlier versions of the guide. +The following people (in alphabetical order) have contributed to or reviewed this or earlier versions of the guide. * [Alexander Atallah (alexanderatallah)](https://github.com/alexanderatallah) @@ -10,7 +10,7 @@ The following people (in alphabetical order) have contributed or reviewed this o * [Donne Martin (donnemartin)](https://github.com/donnemartin) * [Max Grigorev (forwidur)](https://github.com/forwidur) * [Dmitry Golyshev (golyshev)](https://github.com/golyshev) -* [Joshua Levy (jlevy)](https://github.com/jlevy) — [5+](https://github.com/jlevy/og-aws/commits?author=jlevy)/[0+](https://github.com/jlevy/og-aws/issues?q=author%3Ajlevy) — _project editor_ +* [Joshua Levy (jlevy)](https://github.com/jlevy) — [6+](https://github.com/open-guides/og-aws/commits?author=jlevy)/[13+](https://github.com/open-guides/og-aws/issues?q=author%3Ajlevy) — _project editor_ * [KAZUYUKI TANIMURA (kazuyukitanimura)](https://github.com/kazuyukitanimura) * [Marcello Bastéa-Forte (marcello3d)](https://github.com/marcello3d) * Max Zanko diff --git a/README.md b/README.md index 4f241fb..fadb2b9 100644 --- a/README.md +++ b/README.md @@ -32,7 +32,7 @@ ## Why an Open Guide? -A lot of information on AWS is already written. Most people learn AWS by reading a blog or a “[getting started guide](http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EC2_GetStarted.html)” and referring to the standard AWS references. Nonetheless, trustworthy and practical information and recommendations aren’t easy to come by. [AWS’s own documentation](https://aws.amazon.com/documentation/) is a great resource but no one reads it all, and it doesn’t include anything but official facts, so omits experiences of engineers. The information in blogs or [Stack Overflow](http://stackoverflow.com/questions/tagged/amazon-web-services) is also not consistently up to date. +A lot of information on AWS is already written. Most people learn AWS by reading a blog or a “[getting started guide](http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EC2_GetStarted.html)” and referring to the [standard AWS references](https://aws.amazon.com/documentation/). Nonetheless, trustworthy and practical information and recommendations aren’t easy to come by. AWS’s own documentation is a great resource but no one reads it all, and it doesn’t include anything but official facts, so omits experiences of engineers. The information in blogs or [Stack Overflow](http://stackoverflow.com/questions/tagged/amazon-web-services) is also not consistently up to date. This guide aims to be a useful, living reference that consolidates links, tips, gotchas and best practices. It arose from discussion and editing over beers by [several engineers](AUTHORS.md) who have used AWS extensively. @@ -43,7 +43,7 @@ Please read the [**license**](#license) and [**disclaimer**](#disclaimer). **July 2016: This is an early in-progress draft!** It’s our first attempt at assembling this information, so is certain to have omissions and errors. [**Please contribute**](CONTRIBUTING.md) by filing issues or PRs to comment, expand, correct, or otherwise improve it. -This guide *open to contributions*, so unlike a blog, it can keep improving. +This guide is *open to contributions*, so unlike a blog, it can keep improving. Like any open source effort, we combine efforts but also review ensure high quality. @@ -189,7 +189,7 @@ Many services within AWS can at least be compared with Google Cloud offerings or | Virtual server | EC2 | Compute Engine (GCE) | | | DigitalOcean | OpenStack | | PaaS | Elastic Beanstalk | App Engine | App Engine | | Heroku | Meteor, AppScale | | Serverless, microservices | Lambda | Functions | | | | | -| Container, cluster manager | ECS | Container Engine/Kubernetes | Borg or Omega | | | Kubernetes, Mesos/Aurora | +| Container, cluster manager | ECS | Container Engine, Kubernetes | Borg or Omega | | | Kubernetes, Mesos, Aurora | | File storage | S3 | Cloud Storage | GFS | | | Swift, HDFS | | Block storage | EBS | Persistent Disk | | | | NFS | | SQL datastore | RDS | Cloud SQL | | | | MySQL, PostgreSQL | @@ -212,7 +212,7 @@ Many services within AWS can at least be compared with Google Cloud offerings or | Email | SES | | | | Sendgrid, Mandrill, Postmark | | Git hosting | CodeCommit | | | | GitHub, BitBucket | GitLab | | User authentication | Cognito | | | | | oauth.io | -| Mobile app analytics | Mobile Analytics | | | | | Mixpanel | +| Mobile app analytics | Mobile Analytics | | | | Mixpanel | | Selected resources with more detail on this chart: @@ -440,6 +440,7 @@ We cover overall security first, since configuring user accounts is something yo * Unfortunately it can’t be enforced in software, so an administrative policy has to be established. * Most users can use the Google Authenticator app (on [iOS](https://itunes.apple.com/us/app/google-authenticator/id388497605) or [Android](https://play.google.com/store/apps/details?id=com.google.android.apps.authenticator2)) to support two-factor authentication. For the root account, consider a hardware fob. * 🔹Consider creating separate AWS accounts for independent parts of your infrastructure if you expect a high rate of AWS API calls, since AWS [throttles calls](http://docs.aws.amazon.com/AWSEC2/latest/APIReference/query-api-troubleshooting.html#api-request-rate) at the AWS account level. +* [**Inspector**](https://aws.amazon.com/inspector/) is an automated security assessment service from AWS that helps identify common security risks. This allows validation that you adhere to certain security practices and may help with compliance. * [**Key Management Service (KMS)**](https://aws.amazon.com/kms/) is likely one of your best and most secure options for storing keys, such as for [EBS](http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html) and [S3 encryption](http://docs.aws.amazon.com/AmazonS3/latest/dev/serv-side-encryption.html). (⛓ At the cost of lock-in.) * [**AWS WAF**](https://aws.amazon.com/waf) is a web application firewall to help you protect your applications for common attack patterns. diff --git a/admin/authors-info.yml b/admin/authors-info.yml index 7826ac3..0b01b07 100644 --- a/admin/authors-info.yml +++ b/admin/authors-info.yml @@ -1,9 +1,9 @@ # This file is used to configure the "ghizmo assemble-authors" command. header: | - This work is a collaborative effort that has benefit from contributions and review of many people. + This work is a collaborative effort. It was begun and is edited by [@jlevy](https://github.com/jlevy) and [@ThanosBaskous](https://github.com/ThanosBaskous). - The following people (in alphabetical order) have contributed or reviewed this or earlier versions of the guide. + The following people (in alphabetical order) have contributed to or reviewed this or earlier versions of the guide. footer: |