Free Assessment

Amazon_S3_5

Ensure S3 buckets have versioning enabled

Description

Amazon S3 can further protect your data using versioning. Be sure to enable this feature. Versioning is a means of keeping multiple variants of an object in the same bucket. You can use versioning to preserve, retrieve, and restore every version of every object stored in your Amazon S3 bucket. With versioning, you can easily recover from both unintended user actions and application failures. By default, requests retrieve the most recently written version. You can retrieve older versions of an object by specifying a version of the object in a request.

Remediation

Using the Amazon unified command line interface:

  • Enable versioning for all the S3 buckets that does not have this feature enabled
    aws s3api put-bucket-versioning –bucket <s3_bucket_name> –versioning-configuration
    Status=Enabled

References:

  1. http://docs.aws.amazon.com/cli/latest/reference/s3api/get-bucket-versioning.html
  2. http://docs.aws.amazon.com/cli/latest/reference/s3api/put-bucket-versioning.html
  3. http://docs.aws.amazon.com/cli/latest/reference/s3api/list-buckets.html
  4. http://docs.aws.amazon.com/AmazonS3/latest/dev/Versioning.html

Service

S3

Severity

Medium

Compliance

Mapping

Want to Know More?

Learn how our partners are managing their cloud security and compliance with Cloudlytics.

I hereby accept the GDPR and Privacy Policy, by subscribing to the newsletters.

Cloudlytics

Solutions

Resources

Company

Legal

Facebook Twitter Linkedin Youtube
Start Free Trial
Login

CLOSE

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!

Learn More