• reddig33@lemmy.world
    link
    fedilink
    arrow-up
    0
    ·
    7 months ago

    Is that an Amazon problem, or a government admin setting the wrong permissions on AWS problem?

    • wizardbeard@lemmy.dbzer0.com
      link
      fedilink
      English
      arrow-up
      0
      ·
      7 months ago

      Absolutely the latter. This is similar to how Snowden had access to all the stuff he leaked. He worked at a place that did contract work with the government and was mortified at all he had access to that he should have never been able to see.

      There’s a shit ton of articles in the tech space about how companies keep fucking up with stuff like this. No reasonable expectation that the government and their contractors would do any better.

        • RonSijm@programming.dev
          link
          fedilink
          arrow-up
          0
          ·
          7 months ago

          It’s pretty common that AWS is doing that, they even have a special GovCloud for them.

          These companies are obviously just doing it wrong by having public S3 buckets

          • SturgiesYrFase@lemmy.ml
            link
            fedilink
            arrow-up
            0
            ·
            7 months ago

            I mean, Amazon isn’t necessarily in the wrong for providing the service. It’s governments trusting a private company, with a history of collecting more data than they should, with sensitive data. It’s just stupid, really really, mind numbingly, stupid

            • RonSijm@programming.dev
              link
              fedilink
              arrow-up
              0
              ·
              7 months ago

              Yea, that’s why I mentioned these companies are just doing it wrong. Governments have the same problems as private companies, in that they don’t really want to maintain their own cloud infrastructure, so they’ll use something like AWS

              But for example they could host their own On-premises HSM and encrypt their GovCloud to a degree that it’s inaccessible to AWS