- 最新
- 最多得票
- 最多評論
Hello
First and foremost, I would recommend you create a budget for your usage. This will help you get notified if your usage goes beyond your specified $ limits, either on daily or monthly basis. You can access this from the top right hand corner under your login, sub-option billing. Also I am sure you are not using your root account and rather create another account with admin and billing access as that is the best practice.
https://console.aws.amazon.com/billing/home
Finally EC2 is billed if it is running instance. You can stop or terminate the instance if it is not in use.
https://aws.amazon.com/premiumsupport/knowledge-center/ec2-instance-hour-billing/
Hope this helps...
Hello, Thanks for the answer, and I already created a buget. and I know EC2 will be charged if I use it over 750 hours per month as I'm free-tier user. Also I have only one instance in my one region, not other region. what I want to know is like I wrote in my question, how the usage of s3 works.(and also about usage of key management service)
and I'm using just root account at the moment,, but guess it will be safe to use another account.
Hello,
In order to better understand who or what is accessing your bucket you should make use of Monitoring S3 access with Server Access Logging https://docs.aws.amazon.com/AmazonS3/latest/userguide/ServerLogs.html
This will help you to better understand who or what is accessing your S3 bucket and objects and better understand the S3 usage bill.
You should also log Amazon S3 API Calls using AWS CloudTrail https://docs.aws.amazon.com/AmazonS3/latest/userguide/cloudtrail-logging.html
By auditing both logs you can better understand if unauthorized API calls or access to be bucket is occurring and correct your S3 Bucket Policies and Access Control Lists.
Please also have a look at the Security Best Practices when using IAM https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html
相關內容
- 已提問 6 個月前
- AWS 官方已更新 1 年前
- AWS 官方已更新 2 年前
- AWS 官方已更新 2 年前
- AWS 官方已更新 3 年前
There are lots of services/bots/things out on the internet that crawl publicly accessible endpoints. I wouldn't make the assumption that you're the only person that knows about it. A quick update would be to change your security group at the front-end to only allow your IP address, this will prevent those crawlers from making requests against your website.