This is not about the AWS Console. It is talking about the customer's site hoste... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		perpil 78 days ago \| parent \| context \| favorite \| on: Ask HN: Our AWS account got compromised after thei... This is not about the AWS Console. It is talking about the customer's site hosted on CloudFront. It is possible to cross wires with user sessions when using CloudFront if you haven't set caching granular enough to be specific to an end user. This scenario is customer error, not AWS.

fulafel 78 days ago [–]

I'd argue it's a classic footgun and a flaw of CloudFront (they should at least warn about it much more).

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact