1 Answer
- Newest
- Most votes
- Most comments
0
If the bucket policy only allows the CloudFront identity to GetObject, then a ListObjects will be denied. But this approach is really relying on Security through obscurity which is not considered secure by most standards bodies.
"System security should not depend on the secrecy of the implementation or its components."
Relevant content
- asked 10 months ago
- asked 2 years ago
- AWS OFFICIALUpdated 4 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 9 months ago