Amazon_SNS_2
Amazon Simple Notification Service (Amazon SNS) is a web service that coordinates and manages the delivery or sending of messages to subscribing endpoints or clients. In Amazon SNS, there are two types of clients—publishers and subscribers—also referred to as producers and consumers. Publishers communicate asynchronously with subscribers by producing and sending a message to a topic, which is a logical access point and communication channel. Subscribers (i.e., web servers, email addresses, Amazon SQS queues, AWS Lambda functions) consume or receive the message or notification over one of the supported protocols (i.e., Amazon SQS, HTTP/S, email, SMS, Lambda) when they are subscribed to the topic. The entities who can subscribe to a SNS topic can be controlled by modifying the topic policy, and they can be: The topic owner Everyone Specific AWS users or resources Users whose endpoint URL,protocol, email address, or ARN from a Subscriberequest match a specified value From the above topic subscribers, you should make sure that Everyone” is not used with any SNS topic in the AWS account.
“Perform the following in the AWS Management Console:
1. Login to the AWS account as root
2. Select SNS service from services
3. Click on topics on left hand side and select single topic
4. Click on Actions drop down and select edit topic policy
5. Select ‘Advanced view’ option and Check the Policy field for the presence of:
6. Edit your existing policy by replacing the above snippet “Principal”:{“AWS” : “*”} with “Principal”:{“AWS” : “”}
References:
Want to Know More?
Learn how our partners are managing their cloud security and compliance with Cloudlytics.
I hereby accept the GDPR and Privacy Policy, by subscribing to the newsletters.
