Telegram bot for AWS instances monitoring

  1. Monitoring charts in chats
  2. Notification settings
  3. Reasonable security measures
  4. Start with the most useful cases (e.g. hibernate if something’s terribly off)

Integration with AWS

1.1 Metrics collection
1.2 Telegram authentication
1.3 Kapacitor’s events detection

Charts with anomaly events

Notification settings

Security issues

Questions:

  • What if someone stole a Telegram account from an engineer and somehow got AWS credentials through it?
  • What if our engineer makes critical changes from the Telegram bot (clients want hibernating instances straight from the bot)?
  • All users must have two-factor authentication for a telegram account
  • Only hibernating command available right from the Telegram bot. And it works only for instances in idle state (when the corresponding notification appears)
  • No SSH credentials in Telegram bot. Only link to AWS console with relevant parameters

Useful cases

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store