AWS > S3 >

CloudTrail Bucket Delete Policy

MEDIUM

Source

CloudSploit

cloudtrail-bucket-delete-policy

management console

CloudTrail Bucket Delete Policy

Ensures CloudTrail logging bucket has a policy to prevent deletion of logs without an MFA token

To provide additional security, CloudTrail logging buckets should require an MFA token to delete objects

Recommended Actions

Enable MFA delete on the CloudTrail bucket

Links

http://docs.aws.amazon.com/AmazonS3/latest/dev/Versioning.html#MultiFactorAuthenticationDelete

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.