Reply to post:

McGraw Hill's S3 buckets exposed 100,000 students' grades and personal info

Anonymous Coward
Anonymous Coward

They ARE secure by default with only the private owner account having access - adding public access requires permissions to be granted by an administrator.

However a combination of the JFDI approach to problem solving and admins assuming they are JUST granting filesystem permissions and something else will manage security (i.e. the typical on-prem model) means mistakes are made.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon