Depends on the criticality of the service. I mean you're right about adding complexity. But sometimes you can just take your really critical services and make sure it can completely withstand any one cloud provider outage.
anyone remember the blog from the late 90s or maybe early 00s who just ripped apart every bespoke captcha that existed on major web sites? It was really entertaining/interesting/informative to me at the time. Can't find it anymore...
I've got only 2 shortcuts I use all the time.
'r' = rsync -vrlHpogDtSx --numeric-ids --progress
And a small python script '2' that allows me to ssh into any system within 4-6 keystrokes (even doing tty tricks to not require <enter>).
"double opt-in" is a term I'm used to hearing in a pejorative way from the pro-spam side. The anti-spam side calls it "confirmed opt-in" which I think is a more accurate description.