I built a private S3 + CloudFront stack for this blog. AWS recommends Amplify instead. Here’s when each makes sense.
I write about AWS, security, and the mistakes I’ve made along the way.
Most of this is stuff I wish I’d found when I was debugging at 2am.
Plugging the Leaky Bucket
The four S3 misconfigs behind most breaches, and how to prevent them with SCPs.
The Staircase Problem
Why tqdm keeps printing staircases and how to fix it.
Hosting a Static Website on a Private S3 Bucket
How I host this blog on a private S3 bucket with CloudFront, OAC, and zero stored credentials.