AWS transfer documentation change
Summary
Added reference to VPC endpoint-specific IAM policy documentation
Security assessment
The change adds a link to documentation about limiting VPC endpoint access, which is a security best practice. However, there's no evidence this addresses a specific security vulnerability rather than improving general documentation.
Diff
diff --git a/transfer/latest/userguide/security_iam_service-with-iam.md b/transfer/latest/userguide/security_iam_service-with-iam.md index 8d244cfed..17897adf2 100644 --- a//transfer/latest/userguide/security_iam_service-with-iam.md +++ b//transfer/latest/userguide/security_iam_service-with-iam.md @@ -111 +111 @@ AWS Transfer Family defines its own set of condition keys and also supports usin -To view examples of AWS Transfer Family identity-based policies, see [AWS Transfer Family identity-based policy examples](./security_iam_id-based-policy-examples.html). +To view examples of AWS Transfer Family identity-based policies, see [AWS Transfer Family identity-based policy examples](./security_iam_id-based-policy-examples.html). For VPC endpoint-specific IAM policies, see [Limiting VPC endpoint access for Transfer Family servers](./create-server-in-vpc.html#limit-vpc-endpoint-access).