Skip to main content

OSS Bucket Only HTTPS Enabled

ID: rule:aliyun:oss-bucket-only-https-enabled
Severity: high

Description

OSS bucket should have a policy that denies non-HTTPS requests to ensure data transport security.

Reason for Violation

The OSS bucket allows non-HTTPS requests, which may lead to data interception or tampering during transport.

Recommendation

Configure a bucket policy that denies requests where 'acs:SecureTransport' is false.

Resource Types

ALIYUN::OSS::Bucket

Description
Reason for Violation
Recommendation
Resource Types