AWS S3 Buckets has block public access setting disabled

Description

This policy ensures that Amazon S3 buckets have the `block public ACLs` setting enabled. Blocking public ACLs helps prevent the exposure of sensitive data by ensuring that public access permissions are not granted through ACLs. This setting is crucial for maintaining the security and privacy of the data stored in S3 buckets. This policy checks whether the `BlockPublicAcls` option is enabled in the `PublicAccessBlockConfiguration` of S3 buckets.

Code Example

resource "aws_s3_bucket_public_access_block" "example" {
  ...
  
+ block_public_acls   = true
}

Remediation

Terraform

Rule Details

Field	Value
ID	IAC-0106
Severity	MEDIUM
IaC Type	Cloudformation
Frameworks	CloudFormation, Terraform, TerraformPlan, Serverless
Checkov ID	CKV_AWS_53

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

AWS S3 Buckets has block public access setting disabled

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

AWS S3 Buckets has block public access setting disabled ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

AWS S3 Buckets has block public access setting disabled

Description

Code Example

Remediation

Rule Details

References