![]() ![]() This means the 'Effect' must not be 'Allow' when the 'Action' is Delete, for all Principals. S3 Buckets must not allow Delete Action From All Principals, as to prevent leaking private information to the entire internet or allow unauthorized data tampering / deletion. S3 Bucket Allows Delete Action From All Principals ffdf4b37-7703-4dfe-a682-9d2e99bc6c09 This means the 'Effect' must not be 'Allow' when the 'Action' is Write_ACP, for all Principals. S3 Buckets must not allow Write_ACP Action From All Principals, as to prevent leaking private information to the entire internet or allow unauthorized data tampering / deletion. This means the 'Effect' must not be 'Allow' when there are All Principals S3 Buckets must not allow Actions From All Principals, as to prevent leaking private information to the entire internet or allow unauthorized data tampering / deletion. This means the 'Effect' must not be 'Allow' when the 'Action' is Put, for all Principals. S3 Buckets must not allow Put Action From All Principals, as to prevent leaking private information to the entire internet or allow unauthorized data tampering / deletion. SQL DB Instance Is Publicly Accessible b187edca-b81e-4fdc-aff4-aab57db45edbĬheck if any Cloud SQL instances are publicly accessible. OSLogin Disabled 32ecd6eb-0711-421f-9627-1a28d9eff217Ĭloud Storage Bucket Is Publicly Accessible c010082c-76e0-4b91-91d9-6e8439e455ddĬloud Storage Bucket is anonymously or publicly accessible ![]() VM With Full Cloud Access bc280331-27b9-4acb-a010-018e8098aa5dĪ VM instance is configured to use the default service account with full access to all Cloud APIsīigQuery Dataset Is Public e576ce44-dd03-4022-a8c0-3906acca2ab4īigQuery dataset is anonymously or publicly accessible ![]() This page contains all queries from Terraform.
0 Comments
Leave a Reply. |