531
submitted 8 months ago by lemmyreader@lemmy.ml to c/security@lemmy.ml
you are viewing a single comment's thread
view the rest of the comments
[-] AmbiguousProps@lemmy.today 167 points 8 months ago

As much as I hate them, this is likey because a customer misconfigured their bucket and not on Amazon.

[-] Lucien@hexbear.net 24 points 8 months ago

Yeah, I work for a Federal agency, and I can confirm this is an extremely plausible situation. Was probably a contractor.

[-] melpomenesclevage@lemm.ee 3 points 8 months ago

Good thing those are always necessary and efficient.

[-] cybersandwich@lemmy.world 18 points 8 months ago

I have never configure s3 buckets for an enterprise personally, but I have used AWS for some personal projects. The control panel pretty clearly warns you if you try to open the bucket to the public. "This is unsafe. Everyone can see everything you idiot!"

They must be doing it through the CLI.

this post was submitted on 07 Apr 2024
531 points (95.9% liked)

Security

5047 readers
15 users here now

Confidentiality Integrity Availability

founded 5 years ago
MODERATORS