Skip to content

II - Mission Support Public

Rules and Groups employed by this XCCDF Profile

  • PostgreSQL must implement cryptographic mechanisms preventing the unauthorized disclosure of organization-defined information at rest on organization-defined information system components.

    <VulnDiscussion>PostgreSQLs handling data requiring data-at-rest protections must employ cryptographic mechanisms to prevent unauthorized dis...
    Rule Medium Severity
  • SRG-APP-000220-DB-000149

    <GroupDescription></GroupDescription>
    Group
  • PostgreSQL must invalidate session identifiers upon user logout or other session termination.

    &lt;VulnDiscussion&gt;Captured sessions can be reused in "replay" attacks. This requirement limits the ability of adversaries to capture and contin...
    Rule Medium Severity
  • SRG-APP-000121-DB-000202

    <GroupDescription></GroupDescription>
    Group
  • PostgreSQL must protect its audit features from unauthorized access.

    &lt;VulnDiscussion&gt;Protecting audit data also includes identifying and protecting the tools used to view and manipulate log data. Depending up...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules