That said? This article rubs me the wrong way. The suggestion that this problem is caused by "dark patterns" and Amazon being misleading about "pay as you go" screams FUD to me. The screenshots provided right in the article clearly show that what was being done wasn't eligible for free tier. And not understanding that launching a resource, regardless of whether or not you're interacting with it, is consuming the service which launches the resource is a problem with the user, not the marketing. Yes, the author admits that they didn't scrutinize, but that doesn't excuse the position of the article that AWS is somehow doing this to intentionally bilk people.
https://blog.andrewray.me/content/images/2018/03/Screen-Shot...
Dark UI indeed.
https://blog.andrewray.me/content/images/2018/03/aws-rds-now...
AWS should have kept their money and OP should've learned their lesson proper.
I spend a lot of time in AWS, and I have trained myself to be extra careful about reading the fine print when using the UI exactly for the reason the author describes.
The author calling out his own stupid mistakes elevates him in my eyes, not the reverse. Honesty and recognition of wrongdoing in oneself are important traits.
Yeah I saw that like, and lolled. The author does indeed admits his/her mistakes, but proceeds to kinda blame it on AWS anyway.
It's like like saying "look I am no racist but <insert some very bad racist phrase here>".
I was playing around with some tutorial to learn something (probably something cool like programming your own robotic drone using functional erlang or whatever), pushed to github and went to sleep. Woke up a few short hours later and had lots of emails about the machines I was spinning up.
Checked and saw that my account had wracked up thousands of dollars overnight (I think 6-8 hours), and I started to shut down the machines.
I didn't get them all, there were more machines hidden, and the bills continued to pile up for another hour or two.
I contacted Amazon who shut it all down, and I reset my password.
Then I realized I had pushed my credentials to github (I should really put this under a pseudonym, but I was new to the whole thing and hadn't even looked into Amazon's authentication system. Obviously, billing credentials and sysadmin credentials should never be the same.) Someone had a scraper going that picked them up almost right away.
To Amazon's credit, they cancelled the charges within a few hours, and if memory serves the person investigating gave me a sympathetic but stern message.
I don't know who the credential-stealer was and what they were using it for, but I would guess crypto mining. I did some calculation at the time and I think they would have extracted about 1/3rd the value of my bill, but those were rough calculations.
So you’re not as alone as you think, and these aren’t from people trying to learn something, it’s from big enterprise IT organisations.
I am less surprised that the mental model fell apart. I guess a lot of people think cloud resources are something that is efficiently shared (consider S3, you pay per byte you store, store 0 bytes, pay $0). But that's actually a rare case, most of the time you are provisioning something for your exclusive use; if you have a database server it costs you the same whether it's doing 10000 transactions per second or sitting completely idle and never logged into.
(Incidentally, the true sharing model used to be popular. Shared hosting with no isolation between tenants predated AWS by a decade. You got a chunk of a computer and shared Apache, MySQL, and PHP with hundreds of other randoms. Very cheap!)
It’s very helpful. You can still end up overspending but at least you get an email within a day letting you know what’s going on, which can solve a lot of the cost overruns by giving you a chance to act quickly and only get hit with 1/30 the monthly fee.
As both services and permissions multiply, the user experience of AWS is getting worse and worse. How would you even know to setup CloudWatch if it’s your first time using the service?
And even when not using free tier, one of the first things AWS tells you to do when creating an account is set up billing alerts.
I’ll be the first person to line up and say that the AWS console and UI is atrocious, especially for hobby devs. But this wasn’t that. The author completely ignored the multiple warnings, got himself into a pickle, got it resolved, and is still complaining about it.
Why is it an extra step to set a timer when you turn the oven on? Just set it to 60 minutes.
Why doesn't every toothbrush beep when you didn't brush long enough?
Why aren't the police keeping track of my children when they go outside?
Free tier is even more ideal for testing than this proposal, but the only way you can make options foolproof is to have no options.
They say you get 30 days of free usage but with a 5k a month cost, no way I'd risk it with my card. https://aws.amazon.com/kendra/pricing/
Today, there's a "Block Public Access" button which basically says "I solemnly swear that I don't want anyone outside of my account to see this S3 bucket. Please don't put this bucket on the public internet, even if I screw up my bucket policy and/or ACLs"
The option is off by default, but it's easy to find, simple to understand, and doesn't force powerusers to give up control.
[0] https://aws.amazon.com/blogs/aws/amazon-s3-block-public-acce...
If they hard shut people down then people would be posting “AWS turned off my services and took my site down blah blah blah”
They bank on smaller bills and hope not everyone calls.
Yep until you go over the traffic limit and they start charging you more
> To Amazon's credit, they removed the bills from my account and gave me free hosting credits to make up for it. Their support was swift and professional.
Generous policies like these avoid headaches, and headaches are much more expensive than machines.
Either you invested your time/money in deeply knowing their ins and outs ( And you're fine spending your life that way ) or you're just a cog inside someones else's big wallet and don't care.
If you're not a big corp or don't have VC money to burn, there are much better options than AWS. The feeling of not getting f"#$ed over every step of the way is priceless, Azure is barely any better.
We don't pay for support tiers and I was extremely surprised that we got a response within ~6-8 hours to unlock their mail-service (SES). You have to do your homework to convince the support employee that you are not building the next spam-network. So they actually have to read all your antics.
It can be a solution for small business with lower traffic applications and after being surprised that they didn't just ignore my request I cannot say their service is bad.
I have another AWS-account, but that is unrelated to the one I use for my current company. Billing of all cloud services is intransparent and I can only believe them if they say I used n hours of CPU time. Don't even know how I would begin in calculating that. Still, their billing console is very helpful. I just ask myself why they put links to your requests for payment everywhere, but not to the actual tax-invoice. That one is ridiculously hidden.
I never had any training for AWS and I tend to skip reading documentation if it gets too boring. They are certainly expensive buttons, so my advice would be to use the credit card of your employer to check it out.
If Amazon wanted to solve these problems they would change the pricing structure, they are not stupid, they know exactly what they are doing since day one and it's working. The moment it stops working for them they will do something about it.
> The community has requested this many times and you promised the feature yet stalled it for many years now.
People in this thread say they started promising this in 2006.
I did two associate cers, just because, and after getting them I had the impression that I vastly underestimated the difficulty of using AWS.
If you really know what you're doing, AWS is probably much better and often even cheaper than everything else, but most people simply can't put in the time.
> I didn't know what "Multi-AZ Deployment" nor "Provisioned IOPS Storage" were, nor did I care.
No. RTFM and look up all the terms you're not familiar with.
> Production is production, right?
Right.
nothing new under the sun, once again.
* Author clicked through Amazon UI/UX, and ended up with a huge bill.
* The UI/UX was confusing and poorly designed -- at no point was he shown he'd pay anything, let alone a lot.
* He was refunded the money AND given credits to make up for the hassle.
This is one of my key frustrations with Amazon. (1) I'd like services like RDS or similar on a pay-as-you-go fashion, rather than based on spun-up servers. I'd like SQL-as-a-service where I pay for actual storage and operations (without dedicated machines). (2) I'd like to understand pricing up-front, and be able to track what I'm paying.
Still, beats everything else.
Seems a somewhat hard problem due to latency constraints and advantages of memory caches. For big data you have AWS Athena and Google Big Query. There's also auto-scaling if you're large enough of either read replicas (AWS Aurora) or the whole thing (Google Spanner).
>and be able to track what I'm paying.
Amazon does provide a nice billing dashboard which updates what you're going to pay throughout the month. Telling you ahead of time what the price will be per month of something would be nice.
Yet, they stubbornly refuse the requests for a hard cap. People were asking for it for years. Some are using ugly hacks like trying prepaid cards: https://www.reddit.com/r/aws/comments/8eaad5/use_a_prepaid_c...
If I have a web app which is accessed once every 10 minutes (0.002 requests per second), I'll be paying for a full AWS machine. It should be a shared, scalable resource and abstraction.
