How to protect an Amazon S3 storage from using it directly?

You say that you protect us from DoS attacks by proxying (if this is correct term) requests to our server through your servers, by using your DNS.

But what can prevent the attacker to use the IP of our server directly?

We are especially worried about DoS cost attacks to our Amazon S3 file store, to make us a big bill.

What can we do to prevent it?

This is a good question. Amazon S3 has many ways to control access to a bucket.

The following options would secure an S3 bucket to prevent direct access:


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.