Episode Summary
Last week in security news: Using AWS role session tags for GitHub Actions, A summary of the Okta hack is pretty damning, IAM Roles Anywhere with an external certificate authority, and more!
Episode Show Notes & Transcript
Links:
- I like this writeup of using AWS role session tags for GitHub Actions but I hate that I have to use Cognito to pull it off.
- This summary of the Okta hack is pretty damning.
- AWS Digital Sovereignty Pledge: Announcing a new, independent sovereign cloud in Europe
- IAM Roles Anywhere with an external certificate authority
- The key line from this 2018 post remains true: access to the root email and phone number is equivalent, if not more powerful, than the root password and MFA!