Using Amazon Cloudfront with Drupal
We like to use our own site to experiment with different technologies. CDN's are nothing new, and Metal Toad has projects running on competing...
Amazon has been steadily improving their CloudFront CDN offering with WAF (Web Application Firewall) capabilities. This is a great feature, however it's ineffective if origin servers can be attacked directly, bypassing CloudFront. With a little extra work, access to the origin can be restricted. The solution is to add a secret header value at the edge, and configure the load balancer to block requests that are missing this secret. This is necessary because CloudFront distributions are not associated with security groups, nor are fixed IPs available (unlike higher-priced competitors like Kona Site Shield).
We like to use our own site to experiment with different technologies. CDN's are nothing new, and Metal Toad has projects running on competing...
Since I wrote my first review of CloudFront, Amazon has added support for three essential features...
JSONP is a way to make cross-domain requests through javascript. It takes advantage of a loophole in the browser's same-origin policy: tags are...