It would be great to have clear documentation as to the minimum AWS policy required for Boxfuse to deploy apps, configure ELB, etc...
For instance, I am wondering if my boxfuse policy requires RDS Actions? I have configured my own DB so it shouldn't. Limiting these actions will help reduce security leaks and, at some point, help with Auditing for cloud security certifications.
Using a wildcard seems to be overkill for the majority of services.
It would be great to have clear documentation as to the minimum AWS policy required for Boxfuse to deploy apps, configure ELB, etc...
For instance, I am wondering if my boxfuse policy requires RDS Actions? I have configured my own DB so it shouldn't. Limiting these actions will help reduce security leaks and, at some point, help with Auditing for cloud security certifications.
Using a wildcard seems to be overkill for the majority of services.