Skip to main content

OSS Bucket Only HTTPS Enabled

ID: rule:aliyun:oss-bucket-only-https-enabled
Severity: high
IaC Types: ROS, Terraform

Description

Ensures OSS bucket policy enforces HTTPS-only access.

Reason for Violation

The OSS bucket does not enforce HTTPS-only access.

Recommendation

Add a Deny statement with condition Bool acs:SecureTransport=false to the bucket policy.

Resource Types

ROS: ALIYUN::OSS::Bucket
Terraform: alicloud_oss_bucket

Description
Reason for Violation
Recommendation
Resource Types