Aqua CSPM

Bucket Public Access Type

Quick Info

Plugin TitleBucket Public Access Type
CloudORACLE
CategoryObject Store
DescriptionEnsures object store buckets do not allow global write, delete, or read permissions
More InfoObject store buckets can be configured to allow anyone, regardless of whether they are an Oracle cloud user or not, to write objects to a bucket or delete objects. This option should not be configured unless there is a strong business requirement.
ORACLE Linkhttps://docs.cloud.oracle.com/iaas/Content/Object/Tasks/managingbuckets.htm
Recommended ActionDisable global all users policies on all object store buckets and ensure the bucket is configured with the least privileges.

Detailed Remediation Steps