Hacker News new | past | comments | ask | show | jobs | submit login

If you are hacked, someone could get your S3 credentials and delete your content. You should backup.



It would be wonderful if S3 offered a write-only, no-overwrite mode so you could upload stuff from servers without storing credentials.


You can actually kind of do that. There's a system intended to allow random users credential-free upload access to your buckets via POST, but you can enforce policy control like "the target has to have xyz/ as a prefix" and "the size must be fewer than 100000 bytes". Here are the S3 docs for it: http://docs.amazonwebservices.com/AmazonS3/2006-03-01/index....


On second glance, it doesn't support "no overwrite".


Ah, thanks, this is very useful.




Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact

Search: