STIGQter: STIG Summary: Crunchy Data PostgreSQL Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020: STIGQter: STIG Summary: Crunchy Data PostgreSQL Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:SV-233538r617333_rule
V-233538
SRG-APP-000442-DB-000379
CD12-00-003000
CAT II
10
Implement protective measures against unauthorized disclosure and modification during reception.
To configure PostgreSQL to use SSL, see supplementary content APPENDIX-G for instructions on enabling SSL.
If the data owner does not have a strict requirement for ensuring data integrity and confidentiality is maintained at every step of the data transfer and handling process, this is not a finding.
As the database administrator (shown here as "postgres"), verify SSL is enabled in postgresql.conf by running the following SQL:
$ sudo su - postgres
$ psql -c "SHOW ssl"
If SSL is off, this is a finding.
If PostgreSQL, associated applications, and infrastructure do not employ protective measures against unauthorized disclosure and modification during reception, this is a finding.
V-233538
False
CD12-00-003000
If the data owner does not have a strict requirement for ensuring data integrity and confidentiality is maintained at every step of the data transfer and handling process, this is not a finding.
As the database administrator (shown here as "postgres"), verify SSL is enabled in postgresql.conf by running the following SQL:
$ sudo su - postgres
$ psql -c "SHOW ssl"
If SSL is off, this is a finding.
If PostgreSQL, associated applications, and infrastructure do not employ protective measures against unauthorized disclosure and modification during reception, this is a finding.
M
5254