Giters

jonrau1 / SyntheticSun

SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

[BUG] S3 bucket access policy not created in cloudformation template and applied to MISP instance profile

sonofagl1tch opened this issue · comments

commented

Describe the bug
S3 bucket access policy not created in cloudformation template and applied to MISP instance profile

To Reproduce
Steps to reproduce the behavior:

  1. run cloudformation template
  2. try and run aws s3 cp s3://<artifact-bucket-name-here>/suricata.yaml .
  3. get error fatal error: An error occurred (403) when calling the HeadObject operation: Forbidden
  4. cry

Expected behavior

  1. Create new policy in cloudformation template
  2. Attach new policy to MISP instance profile

{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "VisualEditor0",
"Effect": "Allow",
"Action": "s3:GetObject",
"Resource": [
"arn:aws:s3:::/",
"arn:aws:s3:::$syntheticsun-artifacts"
]
}
]
}

commented

I ran into the same issue and updated the permissions.