├── LICENSE.md
└── Readme.md
/LICENSE.md:
--------------------------------------------------------------------------------
1 | CC0 1.0 Universal
2 |
3 | Statement of Purpose
4 |
5 | The laws of most jurisdictions throughout the world automatically confer
6 | exclusive Copyright and Related Rights (defined below) upon the creator and
7 | subsequent owner(s) (each and all, an "owner") of an original work of
8 | authorship and/or a database (each, a "Work").
9 |
10 | Certain owners wish to permanently relinquish those rights to a Work for the
11 | purpose of contributing to a commons of creative, cultural and scientific
12 | works ("Commons") that the public can reliably and without fear of later
13 | claims of infringement build upon, modify, incorporate in other works, reuse
14 | and redistribute as freely as possible in any form whatsoever and for any
15 | purposes, including without limitation commercial purposes. These owners may
16 | contribute to the Commons to promote the ideal of a free culture and the
17 | further production of creative, cultural and scientific works, or to gain
18 | reputation or greater distribution for their Work in part through the use and
19 | efforts of others.
20 |
21 | For these and/or other purposes and motivations, and without any expectation
22 | of additional consideration or compensation, the person associating CC0 with a
23 | Work (the "Affirmer"), to the extent that he or she is an owner of Copyright
24 | and Related Rights in the Work, voluntarily elects to apply CC0 to the Work
25 | and publicly distribute the Work under its terms, with knowledge of his or her
26 | Copyright and Related Rights in the Work and the meaning and intended legal
27 | effect of CC0 on those rights.
28 |
29 | 1. Copyright and Related Rights. A Work made available under CC0 may be
30 | protected by copyright and related or neighboring rights ("Copyright and
31 | Related Rights"). Copyright and Related Rights include, but are not limited
32 | to, the following:
33 |
34 | i. the right to reproduce, adapt, distribute, perform, display, communicate,
35 | and translate a Work;
36 |
37 | ii. moral rights retained by the original author(s) and/or performer(s);
38 |
39 | iii. publicity and privacy rights pertaining to a person's image or likeness
40 | depicted in a Work;
41 |
42 | iv. rights protecting against unfair competition in regards to a Work,
43 | subject to the limitations in paragraph 4(a), below;
44 |
45 | v. rights protecting the extraction, dissemination, use and reuse of data in
46 | a Work;
47 |
48 | vi. database rights (such as those arising under Directive 96/9/EC of the
49 | European Parliament and of the Council of 11 March 1996 on the legal
50 | protection of databases, and under any national implementation thereof,
51 | including any amended or successor version of such directive); and
52 |
53 | vii. other similar, equivalent or corresponding rights throughout the world
54 | based on applicable law or treaty, and any national implementations thereof.
55 |
56 | 2. Waiver. To the greatest extent permitted by, but not in contravention of,
57 | applicable law, Affirmer hereby overtly, fully, permanently, irrevocably and
58 | unconditionally waives, abandons, and surrenders all of Affirmer's Copyright
59 | and Related Rights and associated claims and causes of action, whether now
60 | known or unknown (including existing as well as future claims and causes of
61 | action), in the Work (i) in all territories worldwide, (ii) for the maximum
62 | duration provided by applicable law or treaty (including future time
63 | extensions), (iii) in any current or future medium and for any number of
64 | copies, and (iv) for any purpose whatsoever, including without limitation
65 | commercial, advertising or promotional purposes (the "Waiver"). Affirmer makes
66 | the Waiver for the benefit of each member of the public at large and to the
67 | detriment of Affirmer's heirs and successors, fully intending that such Waiver
68 | shall not be subject to revocation, rescission, cancellation, termination, or
69 | any other legal or equitable action to disrupt the quiet enjoyment of the Work
70 | by the public as contemplated by Affirmer's express Statement of Purpose.
71 |
72 | 3. Public License Fallback. Should any part of the Waiver for any reason be
73 | judged legally invalid or ineffective under applicable law, then the Waiver
74 | shall be preserved to the maximum extent permitted taking into account
75 | Affirmer's express Statement of Purpose. In addition, to the extent the Waiver
76 | is so judged Affirmer hereby grants to each affected person a royalty-free,
77 | non transferable, non sublicensable, non exclusive, irrevocable and
78 | unconditional license to exercise Affirmer's Copyright and Related Rights in
79 | the Work (i) in all territories worldwide, (ii) for the maximum duration
80 | provided by applicable law or treaty (including future time extensions), (iii)
81 | in any current or future medium and for any number of copies, and (iv) for any
82 | purpose whatsoever, including without limitation commercial, advertising or
83 | promotional purposes (the "License"). The License shall be deemed effective as
84 | of the date CC0 was applied by Affirmer to the Work. Should any part of the
85 | License for any reason be judged legally invalid or ineffective under
86 | applicable law, such partial invalidity or ineffectiveness shall not
87 | invalidate the remainder of the License, and in such case Affirmer hereby
88 | affirms that he or she will not (i) exercise any of his or her remaining
89 | Copyright and Related Rights in the Work or (ii) assert any associated claims
90 | and causes of action with respect to the Work, in either case contrary to
91 | Affirmer's express Statement of Purpose.
92 |
93 | 4. Limitations and Disclaimers.
94 |
95 | a. No trademark or patent rights held by Affirmer are waived, abandoned,
96 | surrendered, licensed or otherwise affected by this document.
97 |
98 | b. Affirmer offers the Work as-is and makes no representations or warranties
99 | of any kind concerning the Work, express, implied, statutory or otherwise,
100 | including without limitation warranties of title, merchantability, fitness
101 | for a particular purpose, non infringement, or the absence of latent or
102 | other defects, accuracy, or the present or absence of errors, whether or not
103 | discoverable, all to the greatest extent permissible under applicable law.
104 |
105 | c. Affirmer disclaims responsibility for clearing rights of other persons
106 | that may apply to the Work or any use thereof, including without limitation
107 | any person's Copyright and Related Rights in the Work. Further, Affirmer
108 | disclaims responsibility for obtaining any necessary consents, permissions
109 | or other rights required for any use of the Work.
110 |
111 | d. Affirmer understands and acknowledges that Creative Commons is not a
112 | party to this document and has no duty or obligation with respect to this
113 | CC0 or use of the Work.
114 |
115 | For more information, please see
116 |
--------------------------------------------------------------------------------
/Readme.md:
--------------------------------------------------------------------------------
1 | General questions
2 |
3 | 1. Explain the advantage of a cloud over traditional data center.
4 | 2. What is shared responsibility model?
5 | 3. What is the difference between IaaS, PaaS and SaaS?
6 | 4. What is the difference between Public cloud and Private cloud?
7 | 5. What requirements should be met in order for physical datacenter to be considered as Private cloud?
8 | 6. What is AWS Well-Architected framework? What are the main "pillars" of AWS Well-Architected?
9 | 7. Describe AWS Global infrastructure.
10 | 8. What is AWS partition?
11 | 9. What is region?
12 | 10. What is availability zone?
13 | 11. What is edge location?
14 | 12. What tool can be used in order to estimate AWS infrastrcture costs beforehand?
15 | 13. What storage options exist on AWS?
16 | 14. What compute options exist on AWS?
17 | 15. What database options exist on AWS?
18 | 16. What services can be used for monitoring AWS resources?
19 | 17. What services can be used for automating provisioning process on AWS?
20 |
21 | Questions by service
22 | Networking
23 |
24 | 1. What components of AWS VPC are needed in order to establish network SSH connection to an EC2 instance.
25 | 2. What possible ways to connect to the web service running on AWS exist?
26 | 3. What types of Load Balancers exist on AWS? What are the difference between them?
27 | 4. What is AWS Direct Connect? What SLA is provided by direct conect AWS Direct Connect?
28 | 5. What HA Options are available for Direct connect?
29 | 6. Explain the difference between AWS WAF, security group and network ACL. What tool would you choose?
30 | 7. What options for connecting multiple VPCs are available. How do you make a decision about what particular option to choose?
31 |
32 | Amazon S3
33 |
34 | 1. How much total available space does Amazon S3 provide?
35 | 2. What is the maximum file size that can be uploaded to Amazon S3?
36 | 3. Is there any reason why we may need to split a file before starting to upload it to Amazon S3?
37 | 4. What is the maximum file size that can be uploaded to Amazon S3 in a single PUT operation?
38 | 5. What is bucket policy?
39 | 6. Explain the following bucket policy:
40 | ```
41 | {
42 | "Version":"2012-10-17",
43 | "Statement":[
44 | {
45 | "Effect":"Allow",
46 | "Action":[
47 | "s3:ListAllMyBuckets"
48 | ],
49 | "Resource":"arn:aws:s3:::*"
50 | },
51 | {
52 | "Effect":"Allow",
53 | "Action":[
54 | "s3:ListBucket",
55 | "s3:GetBucketLocation"
56 | ],
57 | "Resource":"arn:aws:s3:::examplebucket"
58 | },
59 | {
60 | "Effect":"Allow",
61 | "Action":[
62 | "s3:PutObject",
63 | "s3:PutObjectAcl",
64 | "s3:GetObject",
65 | "s3:GetObjectAcl",
66 | "s3:DeleteObject"
67 | ],
68 | "Resource":"arn:aws:s3:::examplebucket/*"
69 | }
70 | ]
71 | }
72 | ```
73 | 7. In the policy provided previosly, what is the reason to have `"Resource":"arn:aws:s3:::examplebucket"`
74 | and
75 | `"Resource":"arn:aws:s3:::examplebucket/*"`
76 | separated into two different blocks?
77 | 8. A user is browsing your website and finds a funny picture that he would like to share with a colleague. He copies an URL and sends it via messager. When a colleague is trying to open a link, he receives 403 error. The website infrastructure is completely hosted on AWS. What could be the reason for the issue?
78 | 9. What is object availability and object durability?
79 | 10. What can we do to increase object durability and object availability?
80 | 11. What Amazon S3 storage types exist?
81 | 12. What is object lifecycle management?
82 | 13. What encryption options exist in Amazon S3?
83 | 14. Amazon Glacier is an extremely low-cost cloud storage that can be used as a long-term backup. What risks should be considered before choosing AWS Glacier as a backup storage?
84 | 15. What Amazon S3 features can prevent from exposing confidential data to the public Internet?
85 | 16. Access settings for your AWS account does not allow public S3 buckets but we still need to publish a static website hosted on Amazon S3. How can we acheive the goal without having to change public access settings?
86 | 17. How to share a file located in Amazon S3 with another AWS account?
87 | 18. How to share a file located in Amazon S3 with somebody who does not have an AWS account?
88 |
89 | Amazon EC2
90 |
91 | 1. What is instance type? What instance types exist?
92 | 2. What is instance generation? What instance generation should be choosen?
93 | 3. How is the "t" instance type different from other instance types?
94 | 4. What is Auto-Scaling groups?
95 | 5. What is the difference between horizontal and vertical scaling? What kind of scaling is acheived with Auto-Scaling?
96 | 6. How does Amazon decides about what particular instance in an Auto-Scaling group should be terminated?
97 | 7. What can be done in order to prevent an isntance from being terminated during troubleshooting via SSH?
98 | 8. How to setup post-actions for instances that are terminated by Auto-Scaling?
99 |
100 | Databases
101 |
102 | 1. What is the difference between relational and non-relational databases?
103 | 2. What are use cases for relational databases?
104 | 3. What relational database options are provided by AWS?
105 | 4. How to replicate an RDS instance to another availability zone?
106 | 5. How to replicate an RDS instance to another region?
107 | 6. What is the difference between Multi-AZ deployment and Read-Replica?
108 | 7. What else except for High-availability can be acheived using Read-Replicas and Multi-AZ?
109 | 8. What is the difference between manual and automated RDS snapshots?
110 | 9. What are use cases for non-relational databases?
111 | 10. What non-relational database options are provided by AWS?
112 | 11. In DynamoDB there is a "scan" command. Usually, it's not a good idea to run a table scan. Why?
113 | 12. What is primary key in DynamoDB? What kind of primary keys exist?
114 | 13. What is secondary index? How is it different from primary key?
115 | 14. What is the difference between local secondary index and global secondary index?
116 | 15. What is the maximum size of a DynamoDB item? How to workaround this limitation?
117 | 16. In what cases DynamoDB should NOT be used?
118 |
119 | CloudFormation
120 |
121 | 1. What major sections can be specified in CloudFromation template?
122 | 2. What is the only section mandatory in CloudFormation template?
123 | 3. What is the maximum number of parameters that can be passed to a single CloudFormation template?
124 | 4. What is the maximium number of resources that can be declared in a single CloudFormation template?
125 | 5. How to workaround the limitations described during previous two sections?
126 | 6. What is AWS CloudFormation update behaviors? What update behaviors exist?
127 | 7. How to predict what happens with an AWS resource during CloudFormation stack update and avoid the risk of accidential deletion?
128 | 8. What other options are available to prevent accidental deletion of CloudFormation resources?
129 |
130 | AWS Identity and Access Management
131 |
132 | 1. What basic steps should be performed in order to secure newly created AWS account?
133 | 2. What is PARC?
134 | 3. You have created an IAM user and applied AdministratorPolicy policy to it. When trying to download a file from S3 you receive Access Denied. You are able to access other services. What could be the reason for the issue?
135 | 4. How to configure EC2 isntance to be able to connect to AWS services?
136 | 5. Once you attached an IAM role to an EC2 instance, your AWS CLI starts to authenticate without any changes. What steps should you perform if you have an application written on C that should be authenticated in AWS
137 | 6. Write an IAM policy for a user that is able to create another IAM users with limited permission scope?
138 | 7. What should be done in order to access resources located in one AWS account while being authenticated in another AWS account? What problems could be solved using such approach?
139 |
140 | Security on AWS
141 |
142 | 1. What governance and logging options are avilable on AWS?
143 | 2. What tools can be used in order to discover compromised AWS resources?
144 | 3. What steps should be performed in case of having an instance compromised?
145 | 4. What encryption options are available in AWS? How to decide what encryption option is needed for a particular case?
146 | 5. What steps should be performed in order to encrypt an EC2 instance that already exists?
147 | 6. What steps should be performed in order to share encrypted EBS snapshot with another AWS account?
148 |
149 | AWS Lambda
150 |
151 | 1. In what cases AWS Lambda should NOT be used?
152 | 2. How does AWS Lambda integrates with another AWS services?
--------------------------------------------------------------------------------