STIGQter STIGQter: STIG Summary: EDB Postgres Advanced Server Security Technical Implementation Guide Version: 1 Release: 6 Benchmark Date: 25 Oct 2019: If passwords are used for authentication, the EDB Postgres Advanced Server must transmit only encrypted representations of passwords.

DISA Rule

SV-83553r1_rule

Vulnerability Number

V-68949

Group Title

SRG-APP-000172-DB-000075

Rule Version

PPS9-00-004400

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Open "<postgresql data directory>/pg_hba.conf" in an editor. (The default path for the postgresql data directory is /var/lib/ppas/9.5/data, but this will vary according to local circumstances.)

For any rows that have "password" specified for the "METHOD" column, change the value to "md5".

Check Contents

Open "<postgresql data directory>/pg_hba.conf" in a viewer or editor. (The default path for the postgresql data directory is /var/lib/ppas/9.5/data, but this will vary according to local circumstances.)

If any rows have "password" specified for the "METHOD" column, this is a finding.

Vulnerability Number

V-68949

Documentable

False

Rule Version

PPS9-00-004400

Severity Override Guidance

Open "<postgresql data directory>/pg_hba.conf" in a viewer or editor. (The default path for the postgresql data directory is /var/lib/ppas/9.5/data, but this will vary according to local circumstances.)

If any rows have "password" specified for the "METHOD" column, this is a finding.

Check Content Reference

M

Target Key

2933

Comments