AWS: We should lock down the IAM policies (further) #11936
Labels
area/security
priority/awaiting-more-evidence
Lowest priority. Possibly useful, but not yet enough support to actually get it done.
Milestone
For example, the master currently has blanket permissions on ec2, and the minion has write access to the s3 bucket, but only needs read access.
This may entail giving objects we create a prefix to enable stricter policies.
The text was updated successfully, but these errors were encountered: