AWS AmazonCloudFront documentation change
Summary
Added requirement to specify Firehose delivery stream in us-east-1 Region for log delivery
Security assessment
The change clarifies regional requirements for log delivery configuration but does not address a security vulnerability or weakness. It improves operational accuracy rather than addressing security risks.
Diff
diff --git a/AmazonCloudFront/latest/DeveloperGuide/standard-logging.md b/AmazonCloudFront/latest/DeveloperGuide/standard-logging.md index 62998421c..700fcf058 100644 --- a//AmazonCloudFront/latest/DeveloperGuide/standard-logging.md +++ b//AmazonCloudFront/latest/DeveloperGuide/standard-logging.md @@ -591 +591 @@ After you create your log group, you must have the required permissions to allow -To send logs to Firehose, create or use an existing Firehose delivery stream. +To send logs to Firehose, create or use an existing Firehose delivery stream. Then, specify the Firehose delivery stream as the log delivery destination. You must specify a Firehose delivery stream in the US East (N. Virginia) us-east-1 Region.