turbot/aws_compliance
Loading controls...

Control: S3 buckets access control lists (ACLs) should not be used to manage user access to buckets

Description

This control checks whether AWS S3 buckets provide user permissions via ACLs. The control fails if ACLs are configured for managing user access on S3 buckets.

Usage

Run the control in your terminal:

powerpipe control run aws_compliance.control.s3_bucket_acls_should_prohibit_user_access

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run aws_compliance.control.s3_bucket_acls_should_prohibit_user_access --share

SQL

This control uses a named query:

s3_bucket_acls_should_prohibit_user_access

Tags