February 09, 2024

113. How do you revoke leaked credentials?

Listen Later

11 minutes

In this episode, we discuss what to do if you accidentally leak your AWS credentials during a live stream. We explain the difference between temporary credentials and long-lived credentials, and how to revoke each type. For temporary credentials, we recommend using the AWS console to revoke sessions or creating an IAM policy to deny access. For long-lived credentials, you must deactivate and rotate the credentials. We also touch on using tools like HashiCorp Vault to manage credentials securely.

💰 SPONSORS 💰

AWS Bites is brought to you by fourTheorem, the AWS consulting partner that doesn’t suck. Check us out at ⁠⁠https://fourTheorem.com⁠⁠

In this episode, we mentioned the following resources:

Gist with example policy: https://gist.github.com/lmammino/02fef8ce0cc22a45f219fe4f47fcf20c

Revoking IAM role temporary security credentials (official AWS docs): https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_revoke-sessions.html

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on X, formerly Twitter:

- ⁠⁠⁠⁠⁠⁠⁠https://twitter.com/eoins⁠⁠⁠⁠⁠⁠⁠

- ⁠⁠⁠⁠⁠⁠⁠https://twitter.com/loige⁠⁠

...more

View all episodes

View all episodes

Download on the App Store

Download on the App Store

Get it on Google Play

AWS Bites

By AWS Bites

4.6

1111 ratings

February 09, 2024

113. How do you revoke leaked credentials?

Listen Later

11 minutes

In this episode, we discuss what to do if you accidentally leak your AWS credentials during a live stream. We explain the difference between temporary credentials and long-lived credentials, and how to revoke each type. For temporary credentials, we recommend using the AWS console to revoke sessions or creating an IAM policy to deny access. For long-lived credentials, you must deactivate and rotate the credentials. We also touch on using tools like HashiCorp Vault to manage credentials securely.

💰 SPONSORS 💰

AWS Bites is brought to you by fourTheorem, the AWS consulting partner that doesn’t suck. Check us out at ⁠⁠https://fourTheorem.com⁠⁠

In this episode, we mentioned the following resources:

Gist with example policy: https://gist.github.com/lmammino/02fef8ce0cc22a45f219fe4f47fcf20c

Revoking IAM role temporary security credentials (official AWS docs): https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_revoke-sessions.html

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on X, formerly Twitter:

- ⁠⁠⁠⁠⁠⁠⁠https://twitter.com/eoins⁠⁠⁠⁠⁠⁠⁠

- ⁠⁠⁠⁠⁠⁠⁠https://twitter.com/loige⁠⁠

...more

More shows like AWS Bites

Hanselminutes with Scott Hanselman by Scott Hanselman

Hanselminutes with Scott Hanselman

379 Listeners

a16z Podcast by Andreessen Horowitz

a16z Podcast

1,081 Listeners

Software Engineering Daily by Software Engineering Daily

Software Engineering Daily

625 Listeners

Risky Business by Patrick Gray

Risky Business

375 Listeners

The Cloudcast by Massive Studios

The Cloudcast

155 Listeners

Python Bytes by Michael Kennedy and Brian Okken

Python Bytes

214 Listeners

Y Combinator Startup Podcast by Y Combinator

Y Combinator Startup Podcast

232 Listeners

Syntax - Tasty Web Development Treats by Wes Bos & Scott Tolinski - Full Stack JavaScript Web Developers

Syntax - Tasty Web Development Treats

986 Listeners

Cybersecurity Today by Jim Love

Cybersecurity Today

175 Listeners

Kubernetes Podcast from Google by Abdel Sghiouar, Kaslin Fields

Kubernetes Podcast from Google

180 Listeners

Practical AI by Practical AI LLC

Practical AI

213 Listeners

AWS Podcast by Amazon Web Services

AWS Podcast

202 Listeners

AWS Morning Brief by Corey Quinn

AWS Morning Brief

78 Listeners

The Real Python Podcast by Real Python

The Real Python Podcast

141 Listeners

The AWS Developers Podcast by Amazon Web Services

The AWS Developers Podcast

23 Listeners