1 Answer
- Newest
- Most votes
- Most comments
1
It doesn't prevent logs from being modified or deleted. You should implement least privilege access and enable MFA delete on the S3 bucket. Please refer to CloudTrail preventative security best practices.
Relevant content
- asked 2 years ago
- asked 2 years ago
- asked 6 months ago
- AWS OFFICIALUpdated 4 months ago
- AWS OFFICIALUpdated 3 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago