Item Search

Name	Audit Name	Plugin	Category
/etc/environment	CIS PostgreSQL 13 OS v1.2.0	Unix
1.2 Install only required packages	CIS PostgreSQL 13 OS v1.2.0	Unix	CONFIGURATION MANAGEMENT
1.4 Ensure Data Cluster Initialized Successfully	CIS PostgreSQL 13 OS v1.2.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.5 Ensure the Latest Security Patches are Applied	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	SYSTEM AND SERVICES ACQUISITION
2.1 Ensure the file permissions mask is correct	CIS PostgreSQL 13 OS v1.2.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
2.3.10.8 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.9 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2022 v3.0.0 L1 Domain Controller	Windows	ACCESS CONTROL
2.3.10.9 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.3.10.9 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.10.9 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2019 v3.0.1 L1 DC	Windows	ACCESS CONTROL
2.3.10.9 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	ACCESS CONTROL
2.3.10.9 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2016 v3.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.10.9 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.11 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2019 STIG v2.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.11.4 (L1) Ensure 'Network security: LAN Manager authentication level' is set to 'Send NTLMv2 response only. Refuse LM & NTLM'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.11.4 (L1) Ensure 'Network security: LAN Manager authentication level' is set to 'Send NTLMv2 response only. Refuse LM & NTLM'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.11.7 (L1) Ensure 'Network security: LAN Manager authentication level' is set to 'Send NTLMv2 response only. Refuse LM & NTLM'	CIS Microsoft Windows Server 2016 v3.0.0 L1 DC	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.11.7 (L1) Ensure 'Network security: LAN Manager authentication level' is set to 'Send NTLMv2 response only. Refuse LM & NTLM'	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MS	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.11.7 (L1) Ensure 'Network security: LAN Manager authentication level' is set to 'Send NTLMv2 response only. Refuse LM & NTLM'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.11.7 (L1) Ensure 'Network security: LAN Manager authentication level' is set to 'Send NTLMv2 response only. Refuse LM & NTLM'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.11.7 (L1) Ensure 'Network security: LAN Manager authentication level' is set to 'Send NTLMv2 response only. Refuse LM & NTLM'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.11.7 Ensure 'Network security: LAN Manager authentication level' is set to 'Send NTLMv2 response only. Refuse LM & NTLM'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.11.7 Ensure 'Network security: LAN Manager authentication level' is set to 'Send NTLMv2 response only. Refuse LM & NTLM'	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.11.7 Ensure 'Network security: LAN Manager authentication level' is set to 'Send NTLMv2 response only. Refuse LM & NTLM'	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.1.2 Ensure the log destinations are set correctly	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.3 Ensure the logging collector is enabled	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.5 Ensure the filename pattern for log files is set correctly	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.7 Ensure 'log_truncate_on_rotation' is enabled	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.8 Ensure the maximum log file lifetime is set correctly	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.13 Ensure the program name for PostgreSQL syslog messages is correct	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.21 Ensure 'log_disconnections' is enabled	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.22 Ensure 'log_error_verbosity' is set correctly	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
4.4 Lock Out Accounts if Not Currently in Use	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	ACCESS CONTROL
4.9 Make use of predefined roles	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2 Ensure PostgreSQL is Bound to an IP Address	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	PLANNING, SYSTEM AND SERVICES ACQUISITION
5.2.3 Ensure Complex Password Must Contain Alphabetic Characters Is Configured	CIS Apple macOS 10.15 Catalina v3.0.0 L2	Unix	IDENTIFICATION AND AUTHENTICATION
6.1 Understanding attack vectors and runtime parameters	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	CONFIGURATION MANAGEMENT
6.7 Ensure FIPS 140-2 OpenSSL Cryptography Is Used	CIS PostgreSQL 13 OS v1.2.0	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.8 Ensure TLS is enabled and configured correctly	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.3 Ensure base backups are configured and functional	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	CONTINGENCY PLANNING
7.5 Ensure streaming replication parameters are configured correctly	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
8.1 Ensure PostgreSQL subdirectory locations are outside the data cluster	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	CONFIGURATION MANAGEMENT
8.2 Ensure the backup and restore tool, 'pgBackRest', is installed and configured	CIS PostgreSQL 13 OS v1.2.0	Unix	CONTINGENCY PLANNING
Archive Check	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB
data_directory/data	CIS PostgreSQL 13 OS v1.2.0	Unix
data_directory/initdb.log	CIS PostgreSQL 13 OS v1.2.0	Unix
fips-mode-setup	CIS PostgreSQL 13 OS v1.2.0	Unix
jit_profiling_support	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB
Linux found	CIS PostgreSQL 13 OS v1.2.0	Unix
show pgaudit.log	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB

Detections

Analytics

Item Search