Sensitive HTML file served by AWS S3 website hosting

GI D

10/28/23, 12:15 PM

How must I configure an S3 bucket to serve sensitive content via website hosting (where the bucket name is the same as the DNS record)? The website will only be reachable from within intranet.

Since it's sensitive material, the bucket and its contents must have public access blocked, obviously. Now, the only file I want to be able to view on a browser is a report.html that I can easily configure as the "index.html" for that S3 website.

Currently I have the bucket blocking public access, with the exception of specific objects that are configured to be publicly accessible via ACL. And of course I have configured the job that generates the report to make it accessible via ACL. This way I can view the report fine on the browser. Still, that specific object is now publicly readable.

So the question is, how can I make that object readable only via the website?

Thanks for any clues.

0 + 1

amazon-s3

amazon-web-services

Tim

10/28/23, 9:19 PM

I haven't tried to do this. Off the top of my head, things I would investigate are S3 IP restrictions and CloudFront content restrictions.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Sensitive HTML file served by AWS S3 website hosting

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.