Fog
cloudfront-signer
Our great sponsors
Fog | cloudfront-signer | |
---|---|---|
3 | - | |
4,319 | 41 | |
0.0% | - | |
7.0 | 0.0 | |
3 days ago | about 4 years ago | |
Ruby | Ruby | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Fog
-
In Digital Ocean, S3-like space keys can access all buckets
I do find the claim that "there's nothing irresponsible about full immediate disclosure" to be interesting.
https://github.com/fog/fog/issues/2525#issuecomment-31336855
-
How to write terraform in a provider independent way?
fog (ruby) https://github.com/fog/fog
-
Replacing Dropbox in favor of DigitalOcean spaces
I went down a bit of a rabbit hole of Digital Ocean and their "security" for production workloads.
> Show me any other vps provider that silently provides access to customer A's data to customer B after receiving commands from customer A to destroy their instance and then I'll believe you guys aren't at the very bottom of the "takes security seriously" list.
From: https://github.com/fog/fog/issues/2525#issuecomment-31337481
YC News Discussion: https://news.ycombinator.com/item?id=6983097
> You do not need to scrub or write anything to not provide user A’s data to user B in a multi-tenant environment. Sparse allocation can easily return nulls to a reader even while the underlying block storage still contains the old data. ... On top of all of that, when I pointed out that what they were doing was absolute amateur hour clownshoes, they oscillated between telling me it was a design decision working as intended (and that it was fine for me to publicize it), and that I was an irresponsible discloser by sharing a vulnerability.
From: https://news.ycombinator.com/item?id=20091026
> You've got an additional problem though, which is that this tells us you have two support channels: one that doesn't work (i.e. yours, the one you built), and one that does (Twitter-shaming). The first channel represents how you act when no one's watching; the second, how you act when they are. Most people prefer to deal with people for whom those two are the same.
From: https://news.ycombinator.com/item?id=20064169
Speaking of randomly locking accounts, the post-mortem kills me:
> The initial account lock and resource power down resulted from an automated service that monitors for cryptocurrency mining activity (Droplet CPU loads and Droplet create behaviors). These signals, coupled with a number of account-level signals (including payment history and current run rate compared to total payments) are used to determine if automated action is warranted to minimize the impact of potential fraudulent high-cpu-loads on other customers.
From: https://www.digitalocean.com/blog/an-update-on-last-weeks-cu...?
In other other words, DO will kill your account with a curt email staring simply: "We have reviewed your account and have declined to activate it. No further information or action is required from you." for simply using "too much CPU"! https://pbs.twimg.com/media/D76ocofXoAY_xB5.png
cloudfront-signer
We haven't tracked posts mentioning cloudfront-signer yet.
Tracking mentions began in Dec 2020.
What are some alternatives?
AWS SDK for Ruby - The official AWS SDK for Ruby.
cloud_wordpress - Manage multiple wordpress
FaaStRuby
browse-everything - Rails engine providing access to files in cloud storage
apache-libcloud - Apache Libcloud is a Python library which hides differences between different cloud provider APIs and allows you to manage different cloud resources through a unified and easy to use API.
colorls - A Ruby gem that beautifies the terminal's ls command, with color and font-awesome icons. :tada:
pulumi-cloud - A highly productive multi-cloud framework for containers, serverless, and data
enumerations - Better Rails Enumerations