S3 Buckets not publicly accessible through ACL.
Default Severity: high
Explanation
Buckets should not have ACLs that allow public access
Possible Impact
Public access to the bucket can lead to data leakage
Suggested Resolution
Don't use canned ACLs or switch to private acl
Insecure Example
The following example will fail the aws-s3-no-public-access-with-acl check.
resource "aws_s3_bucket" "bad_example" {
acl = "public-read"
}
Secure Example
The following example will pass the aws-s3-no-public-access-with-acl check.
resource "aws_s3_bucket" "good_example" {
acl = "private"
}