STIGQter: STIG Summary: PostgreSQL 9.x Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020: STIGQter: STIG Summary: PostgreSQL 9.x Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:SV-214077r508027_rule
V-214077
SRG-APP-000101-DB-000044
PGS9-00-003500
CAT II
10
Configure PostgreSQL audit settings to include all organization-defined detailed information in the audit records for audit events identified by type, location, or subject.
Using pgaudit PostgreSQL can be configured to audit these requests. See supplementary content APPENDIX-B for documentation on installing pgaudit.
To ensure that logging is enabled, review supplementary content APPENDIX-C for instructions on enabling logging.
Review the system documentation to identify what additional information the organization has determined necessary.
Check PostgreSQL settings and existing audit records to verify that all organization-defined additional, more detailed information is in the audit records for audit events identified by type, location, or subject.
If any additional information is defined and is not contained in the audit records, this is a finding.
V-214077
False
PGS9-00-003500
Review the system documentation to identify what additional information the organization has determined necessary.
Check PostgreSQL settings and existing audit records to verify that all organization-defined additional, more detailed information is in the audit records for audit events identified by type, location, or subject.
If any additional information is defined and is not contained in the audit records, this is a finding.
M
3994