this post was submitted on 28 Oct 2025
419 points (99.1% liked)

Technology

75756 readers
1975 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws
419
‘There isn’t really another choice:’ Signal chief explains why the encrypted messenger relies on AWS (www.theverge.com)
submitted 4 days ago by schizoidman@lemmy.zip to c/technology@lemmy.world
108 comments fedilink hide all child comments
 

cross-posted from: https://lemmy.zip/post/51866711

Signal was just one of many services brought down by the AWS outage.

you are viewing a single comment's thread
view the rest of the comments
[–] net00@lemmy.today 13 points 3 days ago (4 children)

Didn't only 1 AWS region go down? maybe before even thinking about anything else they should focus on redundancy within AWS

[–] shalafi@lemmy.world 15 points 3 days ago* (last edited 3 days ago) (1 children)

us-east-1 went down. Problem is that IAM services all run through that DC. Any code relying on an IAM role would not be able to authenticate. Think of it as a username in a Windows domain. IAM encompasses all that you are allowed to view, change, launch, etc.

I didn't hardly touch AWS at my last job, but listening to my teammates and seeing their code led me to believe IAM is used everywhere.

[–] amzd@lemmy.world -2 points 3 days ago (1 children)

How is that even legal, I thought there were data export laws in the eu

[–] shalafi@lemmy.world 8 points 3 days ago

Nothing to do with moving data. But you can't move data without authentication.

I want my service to do a $thing. It won't do $thing without knowing who I am and what permissions I have. The data doesn't have to cross borders, the service simply needs to function.

Does that make sense? As I said, didn't do much in AWS, but the principles are sound.

[–] magguzu@midwest.social 7 points 3 days ago

This is the actual realistic change a lot of people are missing. Multi cloud is hard and imperfect and brings its own new potential issues. But AWS does give you tools to adopt multi region. It's just very expensive.

Unfortunately DNS transcends regions though so that can't really be escaped.

[–] Evotech@lemmy.world 6 points 3 days ago (1 children)

Apparently even if you are fully redundant there's a lot of core services in US east 1 that you rely on

[–] lando55@lemmy.zip 5 points 3 days ago (1 children)

This has been my biggest pet peeve in the wake of the AWS outage. If you'd built for high-availability and continuity then this event would at most have been a minor blip in your services.

[–] shalafi@lemmy.world 4 points 3 days ago

Yeah, but if you want real redundancy, you pay double. My team looked into it. Even our CEO, no tightwad, just laughed and shook his head when we told him.