search

hackoregon / civic-devops

Master collection point for issues, procedures, and code to manage the HackOregon Civic platform
MIT License
11 stars 4 forks source link

Was the hacko-data-archive bucket meant to be Public? #197

Open MikeTheCanuck opened 6 years ago

MikeTheCanuck commented 6 years ago

It may be that the configuration of the S3 bucket hacko-data-archive is configured with Public permissions, allowing access to resources such a using boto (AWS SDK for Python) to access static files #195.

Or maybe the access from an ECS-based container inherits some minimal access via AWS to be able to read data from certain parts of the bucket.

I don't remember - was this intentional? Do we consider all archived data backups (original raw files from outside agencies and bureaus, as well as the derived data from those raw sources) to be public domain assets?

MikeTheCanuck commented 6 years ago

Once PR 51 is merged into Housing-2018 project, we can turn off public access to this bucket.