Plugin Title Bucket Logging
Category Storage
Description Ensures object logging is enabled on storage buckets
More Info Storage bucket logging helps maintain an audit trail of access that can be used in the event of a security incident.
AWS Link
Recommended Action Bucket Logging can only be enabled by using the Command Line Interface and the log bucket must already be created. Use this command to enable Logging: gsutil logging set on -b gs://[LOG_BUCKET_NAME] -o AccessLog gs://[BUCKET_NAME]

Detailed Remediation Steps

Want to scan for this risk automatically?

Get Started Now