Originally published at shieldly.io/blog.
After analyzing a lot of IAM policies, the same seven patterns show up again and again. Here is each one, why it is dangerous, and the fix.
1. Action: * on Resource: *
{
"Effect": "Allow",
Originally published at shieldly.io/blog. After analyzing a lot of IAM policies, the same seven...
Originally published at shieldly.io/blog.
After analyzing a lot of IAM policies, the same seven patterns show up again and again. Here is each one, why it is dangerous, and the fix.
1. Action: * on Resource: *
{
"Effect": "Allow",

The Most Common Pattern I See Across the AWS environments I've reviewed — financial...

The IAM mental model I wish someone had drawn on a whiteboard for me when I was starting out with...

A practical guide to AWS IAM — how users, roles, groups, policies, and trust relationships work, with Terraform examples for…

5 AWS Misconfigurations That Will Fail Your SOC 2 Audit (And How to Fix Them in 10...

A month ago, we thought we'd solved our access control issues with IAM Access Analyzer. But a closer...

AWS IAM is hard to learn from docs alone. The evaluation logic only really clicks after enough trial...