Skip to content
This repository has been archived by the owner on Jun 21, 2022. It is now read-only.

make the policy managed, encrypt the EBS #75

Merged
merged 1 commit into from
Nov 7, 2017
Merged

make the policy managed, encrypt the EBS #75

merged 1 commit into from
Nov 7, 2017

Conversation

johnduffell
Copy link
Member

@johnduffell johnduffell commented May 19, 2017
edited
Loading

I've been installing this for the subs team, and we really need to encrypt our logs due to PII risk.
I also need to reference the kinesis writer policy so I can attach it to my instances' role.

Not sure if these are changes that should apply to everyone, but they could be parameterised if necessary.

@adamnfish @jfsoul @TBonnin you guys have been PRing this project recently so you can critique my PR 😛

@johnduffell johnduffell mentioned this pull request May 19, 2017
Merged
@jfsoul
Copy link
Contributor

jfsoul commented Nov 3, 2017

Only just seen this! Change looks reasonable to me and I think makes sense to make it compulsory for everyone, unless there is a downside that doesn't occur to me.

Not sure I can comment on the writer policy change though. Why is that necessary?

@johnduffell
Copy link
Member Author

the writer policy is so we can apply that policy to other instances rather than just being in this cloudformation. Maybe I didn't know how to do it otherwise though!

@johnduffell johnduffell merged commit b5414d0 into master Nov 7, 2017
@johnduffell johnduffell deleted the encrypt-at-rest branch November 7, 2017 14:55
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@jfsoul jfsoul jfsoul approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@johnduffell @jfsoul