STIGQter STIGQter: STIG Summary: Crunchy Data PostgreSQL Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

Unused database components that are integrated in PostgreSQL and cannot be uninstalled must be disabled.

DISA Rule

SV-233594r617333_rule

Vulnerability Number

V-233594

Group Title

SRG-APP-000141-DB-000092

Rule Version

CD12-00-009200

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

To remove any unneeded executables, as the system administrator, run the following:

# RHEL/CENT Systems
$ sudo yum erase <package_name>

# Debian Systems
$ sudo apt-get remove <package_name>

Check Contents

To list all installed packages, as the system administrator, run the following:

# RHEL/CENT 8 Systems
$ sudo dnf list installed | grep postgres

# RHEL/CENT 7 Systems
$ sudo yum list installed | grep postgres

# Debian Systems
$ dpkg --get-selections | grep postgres

If any packages are installed that are not required, this is a finding.

Vulnerability Number

V-233594

Documentable

False

Rule Version

CD12-00-009200

Severity Override Guidance

To list all installed packages, as the system administrator, run the following:

# RHEL/CENT 8 Systems
$ sudo dnf list installed | grep postgres

# RHEL/CENT 7 Systems
$ sudo yum list installed | grep postgres

# Debian Systems
$ dpkg --get-selections | grep postgres

If any packages are installed that are not required, this is a finding.

Check Content Reference

M

Target Key

5254

Comments