Severity : null
Description : Pre-authenticated requests allow for users who are not in the tenancy to access buckets, having a short expiration time-frame ensures that access does not last longer than intended.
Remediation Steps : When creating pre-authenticated Requests, ensure the expiration date-time is limited to the minimum time possible.
Severity : High
Description: This control ensures that OCI Object Storage pre-authenticated requests has short expiration time-frame ensures that access does not last longer than intended. Pre-authenticated requests allow for users who are not in the tenancy to access buckets, ensuring least access prevents malicious entities from leveraging this type of access to edit or delete objects in a bucket. A unique URL is generated for pre-authenticated request. When creating pre-authenticated Requests, ensure the expiration date-time is limited to the minimum time possible
...