AWS dms documentation change
Summary
Removed example IAM policy for Amazon Redshift Serverless target endpoint
Security assessment
Policy removal may prevent outdated or overly permissive configurations, but there is no explicit evidence of a resolved security vulnerability.
Diff
diff --git a/dms/latest/userguide/CHAP_Target.Redshift.md b/dms/latest/userguide/CHAP_Target.Redshift.md index 1861c3263..86bb3cd44 100644 --- a//dms/latest/userguide/CHAP_Target.Redshift.md +++ b//dms/latest/userguide/CHAP_Target.Redshift.md @@ -592,36 +591,0 @@ When using Amazon Redshift Serverless as a target endpoint, you must add the fol - - { - "PolicyVersion": { - "CreateDate": "2016-05-23T16:29:57Z", - "VersionId": "v3", - "Document": { - "Version": "2012-10-17", - "Statement": [ - { - "Action": [ - "ec2:CreateNetworkInterface", - "ec2:DescribeAvailabilityZones", - "ec2:DescribeInternetGateways", - "ec2:DescribeSecurityGroups", - "ec2:DescribeSubnets", - "ec2:DescribeVpcs", - "ec2:DeleteNetworkInterface", - "ec2:ModifyNetworkInterfaceAttribute" - ], - "Resource": "arn:aws:service:region:account:resourcetype/id", - "Effect": "Allow" - }, - { - "Sid": "", - "Effect": "Allow", - "Principal": { - "Service": "redshift-serverless.amazonaws.com" - }, - "Action": "sts:AssumeRole" - } - ] - }, - "IsDefaultVersion": true - } - } -