I'm interested in hosting a static site on s3 but worry that some smartass could rent a botnet and hammer the bucket just for lulz. It might only take a minute for the charges to bankrupt me, and I can't find any failsafe solution in the AWS documentation. I know I could make a billing alarm trigger a lambda function to disable public access, but it might not be instantaneous. Is there any reliable information to be had about the financial risks?