SV-224145r508023_rule
V-224145
SRG-APP-000101-DB-000044
EP11-00-002200
CAT II
10
Execute the following SQL to set additional detailed information for the audit records in the session:
set edb_audit_tag = '<information>';
Replace <information> with a character string holding the additional data that must be captured.
To set this in a trigger, an example is included below. Keep in mind that the edb_audit_tag is set for the life of the session, not just the life of the insert command:
CREATE OR REPLACE FUNCTION add_audit_info()
RETURNS trigger AS
$BODY
$BEGIN
SET edb_audit_tag = '<information>';
RETURN NEW;
END;
$BODY
$LANGUAGE plpgsql;
CREATE TRIGGER add_audit_info_trigger
BEFORE INSERT
ON <table>
FOR EACH ROW
EXECUTE PROCEDURE add_audit_info();
Review the system documentation to identify what additional information the organization has determined necessary.
Check application and database design, and existing audit records to verify that all organization-defined additional, more detailed information is in the audit records for audit events identified by type, location, or subject.
If any additional information is defined and is not included in the audit records, this is a finding.
V-224145
False
EP11-00-002200
Review the system documentation to identify what additional information the organization has determined necessary.
Check application and database design, and existing audit records to verify that all organization-defined additional, more detailed information is in the audit records for audit events identified by type, location, or subject.
If any additional information is defined and is not included in the audit records, this is a finding.
M
4107