Cloudfront S3 bucket file list by http request
0
I'm plan place files with long random names into S3, then get access over Cloudfront website. Is this securely: no way for getting file list using http request and leakage file names (there enough to have file name for reading file content)? I think there enough set Bucket policy only "Action": "s3:GetObject" for avoid bucket list outside?
已提問 1 年前檢視次數 478 次
1 個回答
- 最新
- 最多得票
- 最多評論
0
If the bucket policy only allows the CloudFront identity to GetObject, then a ListObjects will be denied. But this approach is really relying on Security through obscurity which is not considered secure by most standards bodies.
"System security should not depend on the secrecy of the implementation or its components."
相關內容
- 已提問 4 個月前
- 已提問 6 個月前
AWS 官方已更新 2 年前- AWS 官方已更新 1 年前