diff --git a/main.tf b/main.tf
index ef28fe9..1121787 100644
--- a/main.tf
+++ b/main.tf
@@ -130,13 +130,14 @@ data "aws_iam_policy_document" "this" {
     }
   }
   statement {
-      sid           = "IPAddressRestriction"
+      sid           = "RemoteAccessBucketRestrictions"
       effect        = "Deny"
       actions       = ["s3:*"]
       principals {
         type        = "AWS"
         identifiers = ["*"]
       }
+      resources = [aws_s3_bucket.this.arn, "${aws_s3_bucket.this.arn}/*"]
       dynamic "condition" {
         for_each = local.s3_bucket_conditions
         iterator = c