Control: 5.3 Ensure that logging is enabled for OSS buckets
OSS Bucket Access Logging generates a log that contains access records for each request made to your OSS bucket. An access log record contains details about the request, such as the request type, the resources specified in the request worked, and the time and date the request was processed. It is recommended that bucket access logging be enabled on the OSS bucket.
Perform the following to enable OSS bucket logging:
- Logon to OSS console.
- In the bucket-list pane, click on a target OSS bucket.
- Configure bucket logging.
- Click the
- Select Target Bucket from list.
- Enter a Target Prefix.
Run the control in your terminal:
steampipe check alicloud_compliance.control.cis_v100_5_3
Snapshot and share results via Steampipe Cloud:
steampipe loginsteampipe check --share alicloud_compliance.control.cis_v100_5_3
This control uses a named query:oss_bucket_logging_enabled