Free Assessment

Amazon_S3_1

Ensure no publicly accessible S3 buckets exist

Description

Amazon S3 is object storage built to store and retrieve any amount of data from anywhere – web sites and mobile apps

Remediation

Perform the following to remove any public access that has been granted to the bucket via an ACL or S3 bucket policy:

  1. Go to Amazon S3 console at https://console.aws.amazon.com/s3/home
  2. Right-click on the bucket and click Properties
  3. In the Properties pane, click the Permissions tab.
  4. The tab shows a list of grants, one row per grant, in the bucket ACL. Each row
  5. identifies the grantee and the permissions granted.
  6. Select the row that grants permission to Everyone or Any Authenticated User
  7. Uncheck all the permissions granted to Everyone or Any Authenticated
  8. User (click x to delete the row).
  9. Click Save to save the ACL.
  10. If the Edit bucket policy button is present, click it.
  11. Remove any Statement having an Effect set to Allow and a Principal set to * .

Default Value:
By default, S3 buckets are not publicly accessible

Service

S3

Severity

High

Compliance

Mapping

Want to Know More?

Learn how our partners are managing their cloud security and compliance with Cloudlytics.

I hereby accept the GDPR and Privacy Policy, by subscribing to the newsletters.

Cloudlytics

Solutions

Resources

Company

Legal

Facebook Twitter Linkedin Youtube
Start Free Trial
Login

CLOSE

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!

Learn More