--- title: "Come Scale Away With Me" id: "2698" type: "newsletter" slug: "come-scale-away-with-me" published_at: "2017-05-01T22:51:34+00:00" modified_at: "2019-06-25T22:52:49+00:00" url: "https://www.lastweekinaws.com/newsletter/come-scale-away-with-me/" markdown_url: "https://www.lastweekinaws.com/newsletter/come-scale-away-with-me.md" excerpt: "Welcome to the sixth issue of Last Week in AWS. Last week was quieter on the official AWS front, as they seem to have spent it recovering from their flurry of announcements in the previous week’s summit. That said, let’s..." --- About the Author Corey is the Chief Cloud Economist at Duckbill, where he specializes in helping companies improve their AWS bills by making them smaller and less horrifying. He also hosts the "Screaming in the Cloud" and "AWS Morning Brief" podcasts; and curates "Last Week in AWS," a weekly newsletter summarizing the latest in AWS news, blogs, and tools, sprinkled with snark and thoughtful analysis in roughly equal measure. Sign up for the Newsletter Stay up to date on the latest AWS news, opinions, and tools, all lovingly sprinkled with a bit of snark. "*" indicates required fields Welcome to the sixth issue of ***Last Week in AWS***. Last week was quieter on the official AWS front, as they seem to have spent it recovering from their flurry of announcements in the previous week’s summit. That said, let’s forge ahead: ### Community Contributions There’s a great dive into how cost control was approached to reduce the cost of running a [Kubernetes Cluster on AWS](https://carlosbecker.com/posts/k8s-sandbox-costs/) by 70%. As we’re hearing more and more about Kubernetes, it’s interesting to see various deployment strategies into AWS; I expect to see more articles like this cropping up over the next year or so. A tale of [migrating from Heroku to AWS](https://medium.com/adstage-engineering/migrating-from-heroku-to-aws-our-story-80084d31025e) shows some of the pains and pleasures of migrating from solutions someone else manages for you onto platforms that require more of your engineering focus. [Google talks about going multi-cloud](https://cloudplatform.googleblog.com/2017/04/going-multi-cloud-with-Google-Cloud-Endpoints-and-AWS-Lambda.html) between GCP and AWS. The solution is sound, but fails to emphasize that their proposed solution puts the data transfer costs almost entirely on the AWS side. As with many solutions, at scale this has the potential to do damage to your AWS bill. Also on the topic of reducing Amazon bills, OlinData shares their story about [a credential compromise cost an enormous pile of money](https://www.olindata.com/en/blog/2017/04/spending-100k-usd-45-days-amazon-web-services) . A lot of hard-learned lessons lie buried in this one, as they dig into a number of mistakes that are very easy to make. ### Choice Cuts From the AWS Blog [New – Server-Side Encryption for Amazon Simple Queue Service (SQS)](https://aws.amazon.com/blogs/aws/new-server-side-encryption-for-amazon-simple-queue-service-sqs/) – SQS was AWS’s first publicly available service. Nice to see it gain encryption through KMS, which apparently nobody fully understands. [Announcing the Availability of Hardware Multi-Factor Authentication in the AWS GovCloud (US) Region](https://aws.amazon.com/blogs/security/announcing-the-availability-of-hardware-multi-factor-authentication-in-the-aws-govcloud-us-region/) – After a long wait, AWS now lets government employees lose not only their car keys, but their security clearances at the same time. [Amazon Inspector Update – Assessment Reporting, Proxy Support, and More](https://aws.amazon.com/blogs/aws/amazon-inspector-update-assessment-reporting-proxy-support-and-more/) – Amazon’s Inspector adds new features, helping it gain market share in the lucrative “generates a security report that you will ignore until it’s too late” space. [Manage access to your RDS for MySQL and Amazon Aurora databases using AWS IAM](https://aws.amazon.com/about-aws/whats-new/2017/04/manage-access-to-your-rds-for-mysql-and-amazon-aurora-databases-using-aws-iam/) – Managing database users for MySQL just became more centralized. Postgres support for similar is rumored to be in the works, while Oracle database authentication is still accomplished via the transfer of money from designated accounts. ### Tools GitHub has open sourced [OctoDNS](https://githubengineering.com/enabling-split-authority-dns-with-octodns/) to help manage split-authority DNS. [AutoSpotting](https://github.com/cristim/autospotting) helps automate use of the AWS spot market if your workload supports it. This is a great way to help reduce costs for your environment without making a pile of engineering changes. Understanding IAM is difficult at the best of times– and the official AWS documentation doesn’t help. [Cloudonaut’s IAM reference](https://iam.cloudonaut.io/) is a great help in quickly figuring out how to craft the policy you want. ### Tip of the Week Originally, the US Standard S3 region (us-east–1) had a weaker consistency model than other S3 regions– in other words, being able to access an object immediately after writing it would not be guaranteed to work due to a race condition. This was corrected in [August of 2015](https://aws.amazon.com/about-aws/whats-new/2015/08/amazon-s3-introduces-new-usability-enhancements/) , but many guides to AWS missed this detail. It may be worth validating that your S3 usage model’s assumptions make sense with S3’s current implementation. …and that’s what happened ***Last Week in AWS***. ## You might also like [More Newsletter Issues](https://www.lastweekinaws.com/newsletter/) Issue No.457 ### [https://www.lastweekinaws.com/newsletter/15259/](https://www.lastweekinaws.com/newsletter/15259/) [Read More about](https://www.lastweekinaws.com/newsletter/15259/) Issue No.456 ### [https://www.lastweekinaws.com/newsletter/15252/](https://www.lastweekinaws.com/newsletter/15252/) [Read More about](https://www.lastweekinaws.com/newsletter/15252/) Issue No.455 ### [https://www.lastweekinaws.com/newsletter/15235/](https://www.lastweekinaws.com/newsletter/15235/) [Read More about](https://www.lastweekinaws.com/newsletter/15235/) Issue No.454 ### [Impromptu Security Week](https://www.lastweekinaws.com/newsletter/impromptu-security-week/) [Read More about Impromptu Security Week](https://www.lastweekinaws.com/newsletter/impromptu-security-week/)