S3 8 Flashcards

1
Q

S3 Events

Where can S3 Events be delivered to?

A

SNS, SQS, Lambda

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

S3 Events

What filters can you do on actions that trigger S3 Events?

important

A

Create/delete objects, Glacier restore, replication things

Glacier restore specifically is Cantrill flagged for exam

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

S3 Events

What do you do if you want S3 events for things that S3 Events doesn’t support?

A

Use EventBridge

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

ACLs

Two levels os S3 things you can use ACLs with?

A

Bucket level and object level

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

ACLs

Advantage of S3 ACLs?

A

Can control permissions on individual objects.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

ACLs

Four Grantees for ACLs?

A

Bucket owner, Everyone, Authenticated users, specific AWS accounts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

ACLs

Who does Bucket Owner ACL apply to?

A

Only the AWS account that owns the bucket

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

ACLs

Who does Everyone apply to?

A

Literally everyone, including unauthenticated and un-SIGv4-signed requests

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

ACLs

Who does Auth Users apply to?

A

Anyone with a SIGv4-signed request

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

ACLs

Two types of S3 things that ACL permissions can apply to?

A

S3 objects and S3 Bucket ACLs

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

ACLs

What ACL permissions can you grant at the bucket level?

A

List objects, write objects, read bucket ACLs, write bucket ACLs

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

ACLs

What ACL permissions can you grant at the object level?

A

Read object, read object ACL, write object ACL (no write object perm exists!)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

ACLs

How do you grant access via an ACL to another AWS account?

A

Need their “Canonical ID” since ACLs existed before IAM did.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

ACLs

What happens if ACLs and IAM-based permissions conflict?

A

Any explicit deny anywhere denies access, else something has to grant access.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly