505

Amazon storing classified US government documents improperly (lemmy.ml)

submitted 1 year ago by lemmyreader@lemmy.ml to c/security@lemmy.ml

55 comments fedilink hide all child comments

https://wetdry.world/@ari/112230288896956003

you are viewing a single comment's thread
view the rest of the comments

[-] dejected_warp_core@lemmy.world 2 points 1 year ago* (last edited 1 year ago)

What kills me about S3 is that the use cases for publicly accessing S3 contents over HTTP have got to be vanishingly small compared to every other use of the service. I appreciate there's legacy baggage here but I seriously wonder why Amazon hasn't retired public S3 and launched a distinct service or control for this that's harder to screw up.

[-] capital@lemmy.world 6 points 1 year ago

Public access is disabled by default and it warns you when you enable it. How much more idiot proof does it need to be?

[-] dejected_warp_core@lemmy.world 1 points 1 year ago

Honestly, I'm for removing the option and moving that "feature" somewhere else in AWS entirely. And those warnings aren't really a thing when using IaC. Right now it's still a "click here for self harm" button, even with the idiot proofing around it.

[-] antimidas@sopuli.xyz 2 points 1 year ago

Wouldn't say so, loads of people and organisations use it as a pseudo-CDN of sorts AFAIK

this post was submitted on 07 Apr 2024

505 points (100.0% liked)

Security

5391 readers

3 users here now

Confidentiality Integrity Availability

founded 5 years ago

MODERATORS

gary_host_laptop@lemmy.ml