OSS Bucket Anonymous Access Prohibited

ID: rule:aliyun:oss-bucket-anonymous-prohibited
Severity: high

Description

Ensures that anonymous access is prohibited for the OSS bucket.

Reason for Violation

Anonymous access to an OSS bucket increases the risk of unauthorized data exposure.

Recommendation

Configure the OSS bucket ACL to 'private' and ensure no public read/write permissions are granted to anonymous users.

Resource Types

• ALIYUN::OSS::Bucket