STIGQter: STIG Summary: Crunchy Data PostgreSQL Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

PostgreSQL must allocate audit record storage capacity in accordance with organization-defined audit record storage requirements.

DISA Rule

SV-233529r617333_rule

Vulnerability Number

V-233529

Group Title

SRG-APP-000357-DB-000316

Rule Version

CD12-00-002100

Severity

CAT II

CCI(s)

• CCI-001849 - The organization allocates audit record storage capacity in accordance with organization-defined audit record storage requirements.

Weight

10

Fix Recommendation

Allocate sufficient audit file/table space to support peak demand.

Check Contents

Investigate whether there have been any incidents where PostgreSQL ran out of audit log space since the last time the space was allocated or other corrective measures were taken.

If there have been incidents where PostgreSQL ran out of audit log space, this is a finding.

Vulnerability Number

V-233529

Documentable

False

Rule Version

CD12-00-002100

Severity Override Guidance

Investigate whether there have been any incidents where PostgreSQL ran out of audit log space since the last time the space was allocated or other corrective measures were taken.

If there have been incidents where PostgreSQL ran out of audit log space, this is a finding.

Check Content Reference

M

Target Key

5254

Comments