Free AI web copilot to create summaries, insights and extended knowledge, download it at here

Abstract

re their encounters and engage with a global audience. Channels like “Audit the Audit,” “News Now Houston,” and “High Desert Community Watch” have gained substantial followings, with millions of views on their videos. These auditors have become celebrities within the YouTube community, attracting both supporters and critics.</p><p id="a3fd">One prominent example of First Amendment audits in action can be found in the following YouTube video :</p> <figure id="67f2"> <div> <div> <img class="ratio" src="http://placehold.it/16x9"> <iframe class="" src="https://cdn.embedly.com/widgets/media.html?src=https%3A%2F%2Fwww.youtube.com%2Fembed%2FDT2baYDdt8s%3Ffeature%3Doembed&display_name=YouTube&url=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3DDT2baYDdt8s&image=https%3A%2F%2Fi.ytimg.com%2Fvi%2FDT2baYDdt8s%2Fhqdefault.jpg&key=a19fcc184b9711e1b4764040d3dc5c07&type=text%2Fhtml&schema=youtube" allowfullscreen="" frameborder="0" height="480" width="854"> </div> </div> </figure></iframe></div></div></figure><p id="3b1b">In my personal view, despite the unprofessional response from the police officer in this video, the auditor seemed to be excessively provoking them. This behavior is somewhat perplexing and, in my opinion, unacceptable. It is crucial to remember that even though First Amendment audits serve a significant purpose in maintaining governmental accountability and educating the public about their constitutional rights, there should be a level of respect and understanding maintained during these interactions. Extreme provocation can potentially cloud the intended message and purpose of these audits, creating unnecessary tension and conflict.</p><figure id="621a"><img src="https://cdn-images-1.readmedium.com/v2/resize:fit:800/1*KJUyQTNlBxn8ZjrbDYhNag.jpeg"><figcaption></figcaption></figure><h1 id="8ea1">First Amendment Audits Legal Controversies</h1><p id="13d7">First Amendment auditors have sparked debates about the boundaries of free speech and the role of citizens in holding public officials accountable. Supporters argue that these audits promote transparency and government accountability, while critics question the motives of auditors and the potential disruption they may cause.</p><p id="20fa">The legality of First Amendment audits is a subject of as being said before is in ongoing debate. While auditors argue that they are exercising their constitutional rights, law enforcement agencies have raised concerns about potential interference with police operations and public safety. Courts have grappled with balancing the right to record in public spaces with legitimate law enforcement interests.</p><p id="88d3">In light of the ongoing debate surrounding the legality and appropriateness of First Amendment audits, it’s beneficial to seek insight from experts in the field. One such voice on Medium.com belongs to <a href="undefined">Kemal M. Lepschoq, LL.M. 👨🏻‍🎓⚖️</a>; while I do not have expertise in the law field, I think lawyers like Kemal could provide a valuable perspective on this complex issue more than me.</p><figure id="d1df"><img src="https://cdn-images-1.readmedium.com/v2/resize:fit:800/1*KJUyQTNlBxn8ZjrbDYhNag.jpeg"><figcaption></figcaption></figure><h1 id="84e6">The Role of the First Amendment on Free Speech</h1><p id="0c34">Some argue that First Amendment audits are essential for preserving and promoting free speech rights, as they serve as a check on government power. However, others contend that auditors’ confrontational tactics and the potential for escalations may undermine the public’s perception of genuine free speech advocacy.</p><p id="21db">While First Amendment audits may be well-intentioned, there is growing concern that they may unintentionally foster a societal attitude of mistrust toward law enforcement. These audits, while promoting transparency, can inadvertently send a message that all law enforcement actions are suspect. This could potentially lead the public to form a negative or adversarial view of police officers and other officials, undermining their authority and complicating their efforts to maintain public safety.</p><p id="7144">It’s important to note that the concept of First Amendment audits is relatively new and not thoroughly r

Options

esearched or studied. Therefore, while it stands as a potent tool for exercising constitutional rights, its broader implications on society’s perception of law enforcement and public safety need careful examination and thoughtful discussion.</p><figure id="311e"><img src="https://cdn-images-1.readmedium.com/v2/resize:fit:800/1*KJUyQTNlBxn8ZjrbDYhNag.jpeg"><figcaption></figcaption></figure><h1 id="9f57">First Amendment Audits & Digital Media</h1><p id="2f05">As First Amendment audits continue to gain attention, their future in the digital media landscape remains uncertain. YouTube’s evolving policies, legal challenges, and public sentiment will play a significant role in shaping the direction of these audits. It is likely that we will see continued discussions regarding the balance between constitutional rights and public safety concerns.</p><p id="c0df">My hope is for the auditors to recognize the collective impression they create and the consequential societal impact. While these audits seem to be a legitimate exercise of civil liberties, they also contribute significantly to shaping public opinion. Therefore, a measure of caution and responsibility is necessary.</p><p id="25f3">Auditors should be mindful of the potential for their activities to inadvertently cast law enforcement in an adversarial light, fostering an environment of mistrust. My hope is, therefore, that they will exercise their rights with a balanced approach, recognizing the weight of their contributions to public opinion and the need for this practice to be judiciously monitored and controlled.</p><figure id="d641"><img src="https://cdn-images-1.readmedium.com/v2/resize:fit:800/1*KJUyQTNlBxn8ZjrbDYhNag.jpeg"><figcaption></figcaption></figure><h1 id="6258">Conclusion</h1><p id="77dc">First Amendment auditors have carved out a unique place on YouTube, captivating audiences with their audacious encounters and challenging the boundaries of free speech. However, the impact and consequences of these audits extend beyond YouTube, raising important questions about the balance between individual rights, government accountability, and public safety. As the digital media landscape continues to evolve, the future of First Amendment audits remains uncertain. Only time will tell how this trend will shape the broader discourse on free speech and citizen engagement with those in power.</p><p id="cadf">I firmly believe that while we need to address the issue of police misconduct, it is important that our methods do not exacerbate the problem. Police officers are as susceptible to stress and mental health issues as any other citizen. First Amendment auditors pushing law enforcement officers too far may not only be counterproductive, but it could also put unnecessary strain on these public servants, who have families and personal lives just like the rest of us. In the pursuit of justice, we must remember to extend empathy and understanding towards all parties involved. It is only by doing so that we can foster a fair and just society.</p><figure id="7625"><img src="https://cdn-images-1.readmedium.com/v2/resize:fit:800/1*KJUyQTNlBxn8ZjrbDYhNag.jpeg"><figcaption></figcaption></figure><h1 id="9e53">Author’s Note</h1><p id="320a">Thank you for reading my story. Here is some information about <a href="https://readmedium.com/editorial-bio-of-ali-alzahrani-b78c1a23fcbc?sk=1150094bb674aaa7701f61972f40b86c"><b>my background</b></a>. 🙏Consider sharing and participating in the conversation if this content speaks to you. For any queries, collaborations, or comments, reach out to me at <a href="[email protected]"><b>[email protected]</b></a>. Thank you for supporting my work!</p><div id="c94c" class="link-block"> <a href="https://medium.com/@aaar69member/subscribe"> <div> <div> <h2>Get an email whenever Ali Alzahrani, Editor publishes.</h2> <div><h3>Get an email whenever Ali Alzahrani, Editor publishes. By signing up, you will create a Medium account if you don't…</h3></div> <div><p>medium.com</p></div> </div> <div> <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/0*hM3RhYQ7aRYMopVt)"></div> </div> </div> </a> </div></article></body>

How to Fix TLS Certificate Deployment Via CloudFormation

ACM.248 This process needs some love ❤️

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

⚙️ Check out my series on Automating Cybersecurity Metrics | Code.

🔒 Related Stories: Application Security | Secure Code | AWS Security | TLS

💻 Free Content on Jobs in Cybersecurity | ✉️ Sign up for the Email List

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

I’ve been writing about TLS certificate deployment. Yesterday’s topic was Certificate Transparency logs and the data they may expose.

Certificate Transparency Logs —What you need to know

ACM.247 Be aware of data exposed in Certificate Transparency logs

medium.com

I started writing the next post on deployment of an S3 bucket but I inadvertently redeployed my TLS certificate and got some errors. And unfortunately, that is why you are not getting a post about creating an S3 bucket for a static website just yet.

After accidentally re-deploying the stack, everything got into a wonky state due to the way this whole process works. I spent way too long diving into the errors I was getting and how to fix them. So now you get this post. Because that unnecessary loss of time is easily resolved with a few changes to the TLS certificate validation process.

You can read the prior posts to get the gist of the problems.

Deploy A TLS Certificate for on AWS Using CloudFormation

ACM.245 Using AWS Certificate Manager to deploy a TLS certificate for a web site or application

medium.com

Validate A TLS Certificate Deployed With CloudFormation

ACM.246 Adding the DNS records required to complete a TLS certificate deployment with CloudFormation

medium.com

Bug Re-deploying AWS TLS Certificate

Can’t redeploy a TLS certificate on AWS

medium.com

Because I could sense these problems before even ever attempting to do this — it’s something I’ve never fully automated before. And you probably know by now I am a huge advocate of automation. But this is just a house of cards. Maybe there is a better way to do it — but if so the CloudFormation documentation is not making that super clear.

For the number of times I have to create a TLS certificate in the past, all the edge cases I have to handle and weird queries I needed to write to make it work were not worth it. But I did it for you, my readers. And maybe someone at AWS will read it all and fix it.

The fix is very simple. When I say simple I mean conceptually. I don’t know how simple it is to change the related back end AWS Systems. Backwards compatibility also needs to be supported for those who have processes depended on this implementation.

Do not leave the TLS certificate stack in a hanging state as I demonstrated in prior posts. This makes it impossible to solve this problem in a single script (unless you have some OS-dependent code to kill a script).
When initial deployment of a TLS certificate completes it is successful and the process ends, but the state of the TLS certificate is UNVALIDATED.
After initial deployment the CNAME validation values are available to add as outputs of the CloudFormation stack.
The user can query the stack outputs for the values require to create a CNAME record as I did in my posts above.
After the CNAME is created, redeploy the same TLS certificate stack again. The state of the certificate turns to VALIDATED. The CNAME name and values are still available as outputs.

With the above I can write a single script:

That would be so much easier to work with.

Delete ALL resources created with CloudFormation when a stack is deleted

Also, CloudFormation stacks that create CNAMES should be able to delete the CNAMES. (Also IAM Users.) If you want to make that an extra override then fine but it’s a pain to have to do that separately.

There’s a way to retain resources if people don’t want that to happen, and stack termination protection. People need to use the platform properly, not have it work in inconsistent ways.

Just to delete a record so I could redeploy it and make use of CloudFormation drift detection I had to fix this error:

Invalid request: Expected exactly one of [AliasTarget, all of [TTL, and ResourceRecords], or…

but found none in Change with [Action=DELETE, Name=x., Type=CNAME, SetIdentifier=null]

medium.com

Like this:

Delete a DNS Record in a Hosted Zone with the AWS CLI

ACM.249 It’s not as simple as you might imagine (as far as I know at the time of this writing)

medium.com

It would be awesome if that got fixed. It is currently taking me an inordinate amount of time to deal with weird queries and edge cases to make this work and the alternative feels so clean and beautiful. 💙

Follow for updates.

About Teri Radichel:
~~~~~~~~~~~~~~~~~~~~
⭐️ Author: Cybersecurity Books
⭐️ Presentations: Presentations by Teri Radichel
⭐️ Recognition: SANS Award, AWS Security Hero, IANS Faculty
⭐️ Certifications: SANS ~ GSE 240
⭐️ Education: BA Business, Master of Software Engineering, Master of Infosec
⭐️ Company: Penetration Tests, Assessments, Phone Consulting ~ 2nd Sight Lab

Need Help With Cybersecurity, Cloud, or Application Security?
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
🔒 Request a penetration test or security assessment
🔒 Schedule a consulting call
🔒 Cybersecurity Speaker for Presentation

Follow for more stories like this:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ 
❤️ Sign Up my Medium Email List
❤️ Twitter: @teriradichel
❤️ LinkedIn: https://www.linkedin.com/in/teriradichel
❤️ Mastodon: @teriradichel@infosec.exchange
❤️ Facebook: 2nd Sight Lab
❤️ YouTube: @2ndsightlab