Free Assessment

Amazon_S3_18

Ensure S3 buckets should not grant any external privileges via ACL

Description

In order to protect your S3 data from loss and unauthorized access ensure there aren’t any publicly accessible S3 buckets available in your AWS account. A publicly accessible S3 bucket allows full control access to everyone (i.e. anonymous users) to List (Read) the objects within the bucket, Upload/Delete (Write) objects, Read bucket permissions and Write bucket permissions.

Remediation

Perform the following to remove any public access that has been granted to the bucket via
an ACL or S3 bucket policy:

  1. Go to Amazon S3 console at https://console.aws.amazon.com/s3/home
  2. Right-click on the bucket and click Properties
  3. In the Properties pane, click the Permissions tab.
  4. Check for public access section&nbsp

Service

S3

Severity

Low

Compliance

Mapping

Want to Know More?

Learn how our partners are managing their cloud security and compliance with Cloudlytics.

I hereby accept the GDPR and Privacy Policy, by subscribing to the newsletters.

Cloudlytics

Solutions

Resources

Company

Legal

Facebook Twitter Linkedin Youtube
Start Free Trial
Login

CLOSE

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!

Learn More