Keeping AWS S3 safe from request Attack

0 votes

I am using S3, with my Free Tier and with 20,000 GETS a month.

Now each visitor can rack up 10-20 requests in absence of a caching service. Now I doubt I'll receive the traffic to reach the 20,000.

If my site was accessed via some loop that intentionally with an aim to put a strain on it? The requests might well, exceed 20,000 and I would be left with huge amazon bill without a fault of my own.

Is there a way out?

May 11, 2018 in Cloud Computing by brat_1
 • 7,200 points 373 views

1 answer to this question.

0 votes
Yes this is possible, because I don’t see a way AWS can differentiate between genuine and fake requests..

It is advisable not to expose S3 publically without any access control mechanisms.

So if you wish to host a website or serve files from S3, you can setup AWS CloudFront to serve the files from S3 also attach AWS WAF to CloudFront. This way you should be able to do rate limiting and prevent certain attacks.
answered May 11, 2018 by code_ninja
 • 6,290 points

Related Questions In Cloud Computing

+1 vote
2 answers

I want to Migrate from Oracle RDBMS to AWS S3 using Kinesis

Try to understand AWS Schema Conversion Tool ...READ MORE

answered Apr 20, 2018 in Cloud Computing by hemant
 • 5,790 points 2,144 views
+7 votes
3 answers

How to download folder from AWS S3?

To Download using AWS S3 CLI : aws ...READ MORE

answered Sep 7, 2018 in Cloud Computing by eatcodesleeprepeat
 • 4,710 points 275,110 views
0 votes
1 answer

How to delete the files from AWS S3 except the recently 5 added/updated files?

Use AWS s3 rm command with multiple --exclude options as shown: aws ...READ MORE

answered Jul 30, 2018 in Cloud Computing by Gopalan
 • 1,360 points 3,549 views
+4 votes
4 answers

AWS S3 cli isn’t working on Windows server

The error message has nothing to do ...READ MORE

answered Aug 20, 2018 in Cloud Computing by Priyaj
 • 58,090 points 1,250 views
+3 votes
6 answers

Are the S3 buckets in AWS, Region Specific?

Yes S3 buckets are region specific. When you ...READ MORE

answered Oct 16, 2018 in Cloud Computing by Rijo
 28,174 views
+4 votes
3 answers

AWS S3 pricing - data transfer in/out

All traffic FROM mobile phones to S3 ...READ MORE

answered Oct 16, 2018 in Cloud Computing by anish
 1,148 views
+3 votes
5 answers

AWS EFS vs EBS vs S3 (differences & when to use?)

EFS is: May not yet be available in ...READ MORE

answered Apr 9, 2018 in Cloud Computing by hemant
 • 5,790 points 4,241 views
+2 votes
3 answers

AWS S3 copy files and folders between two buckets

A simplified example using the aws-sdk gem: AWS.config(:access_key_id ...READ MORE

answered Aug 16, 2018 in Cloud Computing by Priyaj
 • 58,090 points 4,248 views
+4 votes
2 answers

How come AWS S3 is erasing my extension from PDF files?

I think the problem should be with ...READ MORE

answered Mar 27, 2018 in Cloud Computing by code_ninja
 • 6,290 points 3,620 views
0 votes
1 answer

AWS: S3 Request Limit

Get in touch with AWS see if ...READ MORE

answered May 18, 2018 in Cloud Computing by code_ninja
 • 6,290 points 402 views
webinar REGISTER FOR FREE WEBINAR X
REGISTER NOW
webinar_success Thank you for registering Join Edureka Meetup community for 100+ Free Webinars each month JOIN MEETUP GROUP
"PMP®","PMI®", "PMI-ACP®" and "PMBOK®" are registered marks of the Project Management Institute, Inc. MongoDB®, Mongo and the leaf logo are the registered trademarks of MongoDB, Inc.