aws-samples
diff --git a/‎WebApplication/1_StaticWebHosting/README.md
Lines changed: 6 additions & 2 deletions b/‎WebApplication/1_StaticWebHosting/README.md
Lines changed: 6 additions & 2 deletions
diff --git a/‎WebApplication/images/update-bucket-policy.png
41.3 KB b/‎WebApplication/images/update-bucket-policy.png
41.3 KB
@@ -159,14 +159,18 @@ You can define who can access the content in your S3 buckets using a bucket poli
 
 You will need to add a bucket policy to your new Amazon S3 bucket to let anonymous users view your site. By default your bucket will only be accessible by authenticated users with access to your AWS account.
 
-See [this example](http://docs.aws.amazon.com/AmazonS3/latest/dev/example-bucket-policies.html#example-bucket-policies-use-case-2) of a policy that will grant read only access to anonymous users. This example policy allows anyone on the Internet to view your content. The easiest way to update a bucket policy is to use the console. Select the bucket, choose the permission tab and then select Bucket Policy.
+See [this example](http://docs.aws.amazon.com/AmazonS3/latest/dev/example-bucket-policies.html#example-bucket-policies-use-case-2) of a policy that will grant read only access to anonymous users. This example policy allows anyone on the Internet to view your content. The easiest way to update a bucket policy is to use the console. Select the bucket, choose the permission tab and then select Bucket Policy. As a reminder, by default, all buckets are now created with additional guard-rails to prevent security misconfigurations and you need to relax the public bucket policies. 
 
 <details>
 <summary><strong>Step-by-step instructions (expand for details)</strong></summary><p>
 
 1. In the S3 console, select the name of the bucket you created in section 1.
 
-1. Choose the **Permissions** tab, then choose **Bucket Policy**.
+1. Choose the **Permissions** tab, then choose **Public access settings**.
+
+1. Disable **Block new public bucket policies** and **Block public and cross-account access if bucket has public policies**.
+
+1. Choose **Bucket Policy** in the **Permissions** tab.
 
 1. Enter the following policy document into the bucket policy editor replacing `YOUR_BUCKET_NAME` with the name of the bucket you created in section 1: