Certified Security - Specialty

Sign Up Free or Log In to participate!

Section 3: Cloudfront distribution- Demo question

Why was the bucket created (in demo of section 3) with public access to create the cloudfront distribution? Can it be private?

John Mason

He probably did that to make it easier in the demo. Typically the bucket would not be public to prevent people from directly going to S3. Normally you would apply a bucket policy that would allow s3:GetObject for the Cloudfront OAI.

0 Answers

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?