I was thinking what additional features or improved usability could be implemented to avoid such leaks.
I am just brainstorming here:
- Dashboard improvements with warning or red flags if there are unsecured buckets.
- Access limits like the proposed number of downloads, but also IP based restrictions
- Emails to owners if they have unsecured buckets
- Secure default settings that a user has to actively opt-out
I think the worst cases are with users, that leak their information without intention. So some sort of frequent status report to them about the accessibility of their buckets might help a lot.