Amazon_S3_18

Ensure S3 buckets should not grant any external privileges via ACL

Description

In order to protect your S3 data from loss and unauthorized access ensure there aren’t any publicly accessible S3 buckets available in your AWS account. A publicly accessible S3 bucket allows full control access to everyone (i.e. anonymous users) to List (Read) the objects within the bucket, Upload/Delete (Write) objects, Read bucket permissions and Write bucket permissions.

Remediation

Perform the following to remove any public access that has been granted to the bucket via
an ACL or S3 bucket policy:

  1. Go to Amazon S3 console at https://console.aws.amazon.com/s3/home
  2. Right-click on the bucket and click Properties
  3. In the Properties pane, click the Permissions tab.
  4. Check for public access section&nbsp

Service

S3

Severity

Low

Compliance

Mapping

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!