STIGQter STIGQter: STIG Summary: EDB Postgres Advanced Server v11 on Windows Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:

Software, applications, and configuration files that are part of, or related to, the Postgres Plus Advanced Server installation must be monitored to discover unauthorized changes.

DISA Rule

SV-224154r508023_rule

Vulnerability Number

V-224154

Group Title

SRG-APP-000133-DB-000179

Rule Version

EP11-00-003200

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Implement procedures to monitor for unauthorized changes to DBMS software libraries, related software application libraries, and configuration files. If a third-party automated tool is not employed, an automated job that reports file information on the directories and files of interest and compares them to the baseline report for the same will meet the requirement.

Use file hashes or checksums for comparisons, as file dates may be manipulated by malicious users.

Check Contents

Review monitoring procedures and implementation evidence to verify monitoring of changes to database software libraries, related applications, and configuration files is done.

Verify the list of files and directories being monitored is complete.

If monitoring does not occur or is not complete, this is a finding.

Vulnerability Number

V-224154

Documentable

False

Rule Version

EP11-00-003200

Severity Override Guidance

Review monitoring procedures and implementation evidence to verify monitoring of changes to database software libraries, related applications, and configuration files is done.

Verify the list of files and directories being monitored is complete.

If monitoring does not occur or is not complete, this is a finding.

Check Content Reference

M

Target Key

4107

Comments