A “Curious Dev” was trying to play around with AWS S3 bucket policy. *Statutory warning: Curiosity kills. Never try this stunt while at work. Organizations as big as have faced the music because of this. U.S. Pentagon The ‘Principal’ element in the policy code specifies the user, account, service, or other entity that is allowed or denied access to a resource residing in AWS S3 bucket. There have been several cases reported across the world about how S3 buckets lead to data leakage. In most cases, that ‘star’ is the culprit. For more information, visit AWS’ page in the IAM User Guide. To know more about how to restrict Amazon S3 Bucket access to a specific IAM role, click . Principal here Share your experiences with us. And don’t forget to follow us on twitter for such comics. @totalcloudio Originally published at blog.totalcloud.io on March 20, 2018.

Amazon

Twitter

Too Long; Didn't Read

Developers: Build Less. Deliver More. [Learn how]	

AWS S3 Bucket Policy Gone Wrong

Too Long; Didn't Read

Companies Mentioned

Totalcloud.io

About Author

TOPICS

THIS ARTICLE WAS FEATURED IN...

AWS S3 Bucket Policy Gone Wrong

Too Long; Didn't Read

Companies Mentioned

Totalcloud.io

About Author

TOPICS

THIS ARTICLE WAS FEATURED IN...

RELATED STORIES