Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 4 Current »

Severity: High

Description: This control ensures that bucket access control list allows read or write access to AWS Authenticated Users and does not allow unrestricted public to read or write access. Allowing unrestricted access increases opportunities for loss of data.

Remediation Steps:

Perform following to update S3 bucket access control list:

  1. Login to the AWS Management Console at https://console.aws.amazon.com.

  2. Navigate to s3 console.

  3. In the navigation pane,  select buckets.

  4. Click on the bucket to be modified, click Permissions.

  5. In the permissions pane, navigate to Public Access section.

  6. The section shows a list of permissions assigned to everyone.

  7. Uncheck all the permissions granted to everyone.

Important:

Reference:

  • No labels

Blue Hexagon Proprietary