Amazon Web Services has indicated that it is still concerned about the misconfigured segments in its Simple Storage Service (S3) when creating one of the tools to manage them for free.
AWS suffered last year after a series of data leaks caused by customers who had incorrectly configured their S3 storage.
It is an easy mistake to make because the routine to build a new segment offers the possibility of establishing policies from an existing segment. Forget the settings on an old one and, pow, your things could be online. Or you can press the "Manage public permissions" dialog box with your thumb and choose the unsafe option.
Regardless of why naked and solitary cubes are left on the Internet, AWS was ashamed to associate with careless users and last year provided the world with a tool that issued orange alerts when unsafe buckets contaminated users' AWS fleets.
Now the company has decided that the version of that tool included in its Trusted Advisor service should be free.
"Previously available only for business and enterprise support customers, this verification identifies S3 buckets that are public access due to ACL or policies that allow read / write access for any user," said the colossus clouded.
Since the original tool was not much more than a yellow light in an administration console, making it more widely available for free can not prevent the tide of poorly constructed cubes. But at least AWS can say that it is trying to help ...
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.