aws_compliance

AWS Compliance

This control checks whether AWS S3 buckets provide user permissions via ACLs. The control fails if ACLs are configured for managing user access on S3 buckets.

s3_bucket_acls_should_prohibit_user_access

rbi_itf_nbfc_8_I

8.I Basic Security Aspects

acsc_essential_eight_ml_2_5_2

ACSC-EE-ML2-5.2: Restrict administrative privileges ML2

acsc_essential_eight_ml_2_5_3

ACSC-EE-ML2-5.3: Restrict administrative privileges ML2

acsc_essential_eight_ml_3_5_2

ACSC-EE-ML3-5.2: Restrict administrative privileges ML3

acsc_essential_eight_ml_3_5_3

ACSC-EE-ML3-5.3: Restrict administrative privileges ML3

nist_csf_pr_ac_1

PR.AC-1

nist_csf_pr_pt_3

PR.PT-3

all_controls_s3

S3 buckets access control lists (ACLs) should not be used to manage user access to buckets

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Powerpipe and Steampipe.

Apache License 2.0

steampipe-mod-aws-compliance

Control: S3 buckets access control lists (ACLs) should not be used to manage user access to buckets

Description

Usage

SQL

Tags