Those uploader decides rules are wild. Does that mean someone with a website poo... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		jimbobthrowawy on May 31, 2024 \| parent \| context \| favorite \| on: Things you wish you didn't need to know about S3 Those uploader decides rules are wild. Does that mean someone with a website poorly configured enough can have user content uploaded to, and later served from amazon glacier? (assuming a sufficiently motivated user)

wmfiv on May 31, 2024 [–]

It does. But if you're concerend about this (and many of the other items mentioned), you can control access to those features using IAM.

https://docs.aws.amazon.com/service-authorization/latest/ref...

The condition keys specifically are here and you can see keys to control access to storage class, tagging, etc.

https://docs.aws.amazon.com/service-authorization/latest/ref...

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact