Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 4 Current »

Severity : High

Description: This control ensures that OCI Object Storage buckets are not publicly accessible. Monitoring and alerting on publicly accessible buckets will help in identifying changes to the security posture and thus reduces risk for sensitive data being leaked. It is recommended that no bucket be publicly accessible.

Remediation Steps:

Perform following to update bucket access policies :

  1. Login to the OCI console at https://www.oracle.com/cloud/sign-in.html .

  2. Open the navigation menu and click Storage.

  3. Under Object Storage, click Buckets.

  4. Click the bucket name to see the bucket Visibility.

  5. Click Edit Visibility and change the visibility to Private.

  6. Click Save Changes.

Important:

Reference:

  • No labels

Blue Hexagon Proprietary