Aqua CSPM

Bucket Logging

Quick Info

Plugin TitleBucket Logging
CloudGOOGLE
CategoryStorage
DescriptionEnsures object logging is enabled on storage buckets
More InfoStorage bucket logging helps maintain an audit trail of access that can be used in the event of a security incident.
GOOGLE Linkhttps://cloud.google.com/storage/docs/access-logs
Recommended ActionBucket Logging can only be enabled by using the Command Line Interface and the log bucket must already be created. Use this command to enable Logging: gsutil logging set on -b gs://[LOG_BUCKET_NAME] -o AccessLog gs://[BUCKET_NAME]

Detailed Remediation Steps