Update rules 3.8 and 3.9

1 votes

As discussed before in version 3.0.0, rules 3.8 and 3.9 could indeed be merged.

Moreover, maybe the approach for audit and remediation is not optimal. Indeed, I think it would be more flexible and more accurate (although with more requests) to iterate on all available S3 buckets and verify that each one is logged by a cloud trail.

Done Benchmark Community Suggestion Suggested by: Arsène Volte (27 Dec, '24) • Upvoted: 27 Dec, '24 • Comments: 1

Comments: 1
Oldest • Newest • Most likes • Fewest likes

30 Dec, '24
Moderator Admin
Hi Arsène

Thanks for your suggestion. However, benchmark suggestions should be added to the specific CIS Workbench Community. It seems that would be the one at this link - https://workbench.cisecurity.org/communities/18

The community will be able to look at that and determine the best course of action. Also, we welcome input from expert users in our communities to help develop new benchmark versions so please participate!

Regards

Chris

Update rules 3.8 and 3.9

Comments: 1 Oldest • Newest • Most likes • Fewest likes

Comments: 1
Oldest • Newest • Most likes • Fewest likes