AWS AmazonCloudFront documentation change
Summary
Added note about SHA256 support in Perl OpenSSL signing for CloudFront URLs
Security assessment
This change adds documentation about using SHA256 instead of SHA1 in OpenSSL commands for CloudFront URL signing in Perl. This promotes stronger cryptographic security but doesn't address a specific security vulnerability.
Diff
diff --git a/AmazonCloudFront/latest/DeveloperGuide/CreateURLPerl.md b/AmazonCloudFront/latest/DeveloperGuide/CreateURLPerl.md index 9120e8b9e..fa4f769e9 100644 --- a//AmazonCloudFront/latest/DeveloperGuide/CreateURLPerl.md +++ b//AmazonCloudFront/latest/DeveloperGuide/CreateURLPerl.md @@ -11 +11,7 @@ This section includes a Perl script for Linux/Mac platforms that you can use to -###### Note +###### Notes + + * Creating a URL signature is just one part of the process of serving private content using a signed URL. For more information about the end-to-end process, see [Use signed URLs](./private-content-signed-urls.html). + + * In the signing command, note that `sha1` can be replaced with `sha256` in the `openssl dgst` call. + + @@ -13 +18,0 @@ This section includes a Perl script for Linux/Mac platforms that you can use to -Creating a URL signature is just one part of the process of serving private content using a signed URL. For more information about the end-to-end process, see [Use signed URLs](./private-content-signed-urls.html).