- 필수 기능
- 앱 내
- 서비스 관리
- 인프라스트럭처
- 애플리케이션 성능
- 디지털 경험
- 소프트웨어 제공
- 보안
- 로그 관리
- 관리
- 인프라스트럭처
- ci
- containers
- csm
- ndm
- otel_guides
- overview
- slos
- synthetics
- tests
- 워크플로
Secure your Amazon Relational Database Service (RDS) database snapshots by ensuring they are not publicly accessible.
RDS Snapshots can be marked as public, allowing anyone the ability to copy the snapshot to their AWS account and create database instances from it. Unless a snapshot is being shared intentionally, it should be deleted.
Follow the Stop sharing a manual DB snapshot with an AWS account AWS Console docs.
Run modify-db-snapshot-attribute
with the snapshot identifier, attribute name, and values to remove. This removes permission from a particular AWS account to restore the DB snapshot.
aws rds modify-db-snapshot-attribute \
--db-snapshot-identifier yourdbsnapshot \
--attribute-name restore \
--values-to-remove "all"