3.1.13 Ensure the program name for PostgreSQL syslog messages is correct

Information

The syslog_ident setting specifies the program name used to identify PostgreSQL messages in syslog logs. An example of a possible program name is postgres.

Rationale:

If this is not set correctly, it may be difficult or impossible to distinguish PostgreSQL messages from other messages in Syslog logs.

Solution

Execute the following SQL statement(s) to remediate this setting (in this example, assuming a program name of proddb):

postgres=# alter system set syslog_ident = 'proddb';
ALTER SYSTEM
postgres=# select pg_reload_conf();
pg_reload_conf
----------------
t
(1 row)
postgres=# show syslog_ident;
syslog_ident
--------------
proddb
(1 row)

Default Value:

postgres

See Also

https://workbench.cisecurity.org/benchmarks/17004

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-3, 800-53|AU-3(1), 800-53|AU-7, 800-53|AU-12, CSCv7|6.3

Plugin: PostgreSQLDB

Control ID: bfc9c3a4899809dcf3bd1d0aacc52965bd604f4c715bc221ead9a78cc199e4e2