Issue

Storage allows insecure access

 

Details

Disabling insecure HTTP access on storage is essential to prevent unauthorized access and data breaches as it ensures that all access to storage is encrypted in transit, providing an additional layer of security for sensitive data.

Guidance

Secure your storage by disabling cleartext (HTTP) access and enforce the use of encrypted (HTTPS) connections.

Fixes

Use Quickfix

Enforce storage secure access.

Quickfix uses cloud provider APIs to safely resolve the issue automatically.

Use CLI

Run the following in your terminal:
aws s3api put-bucket-policy --bucket hooli-east-logs --policy '{"Version":"2012-10-17","Statement":[{"Principal":{"AWS":"*"},"Action":["s3:*"],"Resource":["arn:aws:s3:::hooli-east-logs/*","arn:aws:s3:::hooli-east-logs"],"Effect":"Deny","Condition":{"Bool":{"aws:SecureTransport":"false"}}}]}'

Subject

Issue

Category

Security

Level

Warning

Detected

Jul 3, 2024

Status

Active
© 2024 Metadash, Inc. • TermsPrivacy