← Back to VMW vRealize Operations Manager 6.x PostgreSQL Security Technical Implementation Guide

V-239827

CAT II (Medium)

The vROps PostgreSQL DB must generate audit records when unsuccessful logons or connection attempts occur.

Rule ID

SV-239827r879874_rule

STIG

VMW vRealize Operations Manager 6.x PostgreSQL Security Technical Implementation Guide

Version

V1R2

CCIs

CCI-000172

Discussion

For completeness of forensic analysis, it is necessary to track failed attempts to log on to the DBMS. While positive identification may not be possible in a case of failed authentication, as much information as possible about the incident must be captured.

Check Content

At the command prompt, execute the following command:

# grep '^\s*log_min_messages\b' /storage/db/vcops/vpostgres/data/postgresql.conf

If "log_min_messages" is not set to "warning", this is a finding.

Fix Text

At the command prompt, execute the following commands:

# /opt/vmware/vpostgres/current/bin/psql -U postgres -c "ALTER SYSTEM SET log_min_messages TO 'warning';"
# /opt/vmware/vpostgres/current/bin/psql -U postgres -c "SELECT pg_reload_conf();"