Manish S. Saindane
Manish S. Saindane
at the bottom right of the postbox
MD5 and SHA-1 are affected by collisions. Probably modify this sentence. You do cover this under "Secure Hash Algorithms", so the above statement somehow contradicts. Reference: https://en.wikipedia.org/wiki/MD5#Collision_vulnerabilities https://security.googleblog.com/2017/02/announcing-first-sha1-collision.html
AWS Lambda limits the number of concurrent executions of your Lambda functions that can be running at a given time (default: 1000 within a given region). This could lead to...
S3 bucket names are unique. If S3 buckets are public, but some files within them are private, they can be viewed in the dir listing (but cannot be accessed). Attackers...
CloudTrail is not enabled by default. Unsuccessful login attempts will not be logged unless CloudTrail is enabled. NOTE: unsuccessful sign-in events by the root user are not logged by CloudTrail....
Threat: Spoofing Mitigations: * Disable or delete access keys that have not been used for a long time. References: http://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_finding-unused.html
Threat: Spoofing Mitigations: * Disable or delete accounts with passwords unused for a long time. References: http://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_finding-unused.html
By default, on a versioned S3 bucket, AWS does not delete previous versions of the file automatically. Threat: Information Disclosure Mitigations could include: * Remove all versions of sensitive files...
If there are double quotes, it does not use the '.rsense' file and thus does not load the paths on Windows.