🚀 Join our AI Wargame at Black Hat Asia and our Workshop + Wargame at NDC Sydney .

Cloudfront Insufficient Logging

Insufficient logging makes it difficult to detect suspicious attempts, potentially allowing security intrusions to go undetected for an extended period.

Remediation

Enable logging for CloudFront. See https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/cloudfront_distribution#logging_config

Metadata

  • Severity: informational
  • Slug: cloudfront-insufficient-logging

CWEs

  • 778: Insufficient Logging

OWASP

  • A09:2021: Security Logging and Monitoring Failures

Available Labs

Open Aws labs in SecDim Play for this vulnerability.

Try it yourself

Find, Hack and Fix Your First Vulnerability

Reading about security bugs is one thing — fixing one is how the skill sticks. Play a free challenge from the wargame, no setup required.