STIGQter: STIG Summary: PostgreSQL 9.x Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:

PostgreSQL must allocate audit record storage capacity in accordance with organization-defined audit record storage requirements.

DISA Rule

SV-214066r508027_rule

Vulnerability Number

V-214066

Group Title

SRG-APP-000357-DB-000316

Rule Version

PGS9-00-002100

Severity

CAT II

CCI(s)

• CCI-001849 - The organization allocates audit record storage capacity in accordance with organization-defined audit record storage requirements.

Weight

10

Fix Recommendation

Allocate sufficient audit file/table space to support peak demand.

Check Contents

Investigate whether there have been any incidents where PostgreSQL ran out of audit log space since the last time the space was allocated or other corrective measures were taken.

If there have been incidents where PostgreSQL ran out of audit log space, this is a finding.

Vulnerability Number

V-214066

Documentable

False

Rule Version

PGS9-00-002100

Severity Override Guidance

Investigate whether there have been any incidents where PostgreSQL ran out of audit log space since the last time the space was allocated or other corrective measures were taken.

If there have been incidents where PostgreSQL ran out of audit log space, this is a finding.

Check Content Reference

M

Target Key

3994

Comments