1.1 Ensure packages are obtained from authorized repositories | CONFIGURATION MANAGEMENT, MAINTENANCE |
1.2 Ensure systemd Service Files Are Enabled | CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION |
1.3 Ensure Data Cluster Initialized Successfully | ACCESS CONTROL, MEDIA PROTECTION |
2.1 Ensure the file permissions mask is correct | ACCESS CONTROL, MEDIA PROTECTION |
4.1 Ensure sudo is configured correctly | ACCESS CONTROL |
5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly | IDENTIFICATION AND AUTHENTICATION |
5.2 Ensure login via 'host' TCP/IP Socket is configured correctly | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
6.7 Ensure FIPS 140-2 OpenSSL Cryptography Is Used | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
7.3 Ensure base backups are configured and functional | CONTINGENCY PLANNING |
8.2 Ensure the backup and restore tool, 'pgBackRest', is installed and configured | CONTINGENCY PLANNING |
CIS_PostgreSQL_15_v1.1.0_L1_OS_Linux.audit from CIS PostgreSQL 15 Benchmark v1.1.0 | |