CloudWiki
Rules
Description

"Ensure that S3 Buckets are configured with 'Block public access'" means that S3 buckets in an AWS environment have been configured with a setting that prevents any public access to the data stored in them. By enabling the "Block public access" setting, organizations can better secure their data stored in S3 buckets and reduce the risk of unauthorized access. The "Block public access" setting consists of four different options that can be enabled, each providing a different level of security. These include: Block public access to buckets and objects granted through new access control lists (ACLs): Prevents new public access through bucket or object-level ACLs. Block public access to buckets and objects granted through any access control lists (ACLs): Prevents both new and existing public access through bucket or object-level ACLs. Block public access to buckets and objects granted through new public bucket or access point policies: Prevents new public access through public bucket policies or access point policies. Block public and cross-account access to buckets and objects through any public bucket or access point policies: Prevents both new and existing public access through public bucket policies or access point policies, including cross-account access. Enabling "Block public access" for S3 buckets is a critical security control that can help ensure that data is not inadvertently exposed to the public. By following this best practice, organizations can better secure their data in the AWS environment and reduce the risk of data breaches and other security incidents.

Remediation

To ensure that S3 buckets are configured with "Block public access," follow the below remediation steps:

  1. Login to the AWS Management Console.
  2. Navigate to the Amazon S3 service.
  3. Select the bucket for which you want to enable "Block public access."
  4. Click on the "Permissions" tab in the bucket properties.
  5. Under the "Block public access" section, click on the "Edit" button.
  6. Enable the "Block all public access" checkbox and ensure all other checkboxes under this section are also enabled.
  7. Click on the "Save changes" button to apply the changes.

This will block all public access to the S3 bucket and ensure that only authorized users can access the data.

Enforced Resources
Note: Remediation steps provided by Lightlytics are meant to be suggestions and guidelines only. It is crucial to thoroughly verify and test any remediation steps before applying them to production environments. Each organization's infrastructure and security needs may differ, and blindly applying suggested remediation steps without proper testing could potentially cause unforeseen issues or vulnerabilities. Therefore, it is strongly recommended that you validate and customize any remediation steps to meet your organization's specific requirements and ensure that they align with your security policies and best practices.