STIGQter: STIG Summary: Crunchy Data PostgreSQL Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

Unused database components that are integrated in PostgreSQL and cannot be uninstalled must be disabled.

DISA Rule

SV-233594r617333_rule

Vulnerability Number

V-233594

Group Title

SRG-APP-000141-DB-000092

Rule Version

CD12-00-009200

Severity

CAT II

CCI(s)

CCI-000381 - The organization configures the information system to provide only essential capabilities.

Weight

Fix Recommendation

To remove any unneeded executables, as the system administrator, run the following:

# RHEL/CENT Systems
$ sudo yum erase <package_name>

# Debian Systems
$ sudo apt-get remove <package_name>

Check Contents

To list all installed packages, as the system administrator, run the following:

# RHEL/CENT 8 Systems
$ sudo dnf list installed | grep postgres

# RHEL/CENT 7 Systems
$ sudo yum list installed | grep postgres

# Debian Systems
$ dpkg --get-selections | grep postgres

If any packages are installed that are not required, this is a finding.

Vulnerability Number

V-233594

Documentable

False

Rule Version

CD12-00-009200

Severity Override Guidance

Check Content Reference

Target Key

5254

Unused database components that are integrated in PostgreSQL and cannot be uninstalled must be disabled.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments