Detections
Analytics

CIS PostgreSQL 13 OS v1.2.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS PostgreSQL 13 OS v1.2.0

Updated: 3/26/2026

Authority: CIS

Plugin: Unix

Revision: 1.2

Estimated Item Count: 18

File Details

Filename: CIS_PostgreSQL_13_v1.2.0_L1_OS_Linux.audit

Size: 43.2 kB

MD5: 13baee47fd56e43b0a6c3c2ed7421b2c
SHA256: 17f0f685d00f13e15b7eef70651a51a9453aa814e976b9590800c844a5645595

Audit Items

DescriptionCategories
1.1 Ensure packages are obtained from authorized repositories
1.2 Install only required packages
1.3 Ensure systemd Service Files Are Enabled
1.4 Ensure Data Cluster Initialized Successfully
1.6 Verify That 'PGPASSWORD' is Not Set in Users' Profiles
1.7 Verify That the 'PGPASSWORD' Environment Variable is Not in Use
2.1 Ensure the file permissions mask is correct
2.2 Ensure extension directory has appropriate ownership and permissions
2.3 Disable PostgreSQL Command History
2.4 Ensure Passwords are Not Stored in the service file
4.1 Ensure Interactive Login is Disabled
4.2 Ensure sudo is configured correctly
5.3 Ensure login via 'local' UNIX Domain Socket is configured correctly
5.4 Ensure login via 'host' TCP/IP Socket is configured correctly
6.7 Ensure FIPS 140-2 OpenSSL Cryptography Is Used
6.10 Ensure Weak SSL/TLS Ciphers Are Disabled
8.2 Ensure the backup and restore tool, 'pgBackRest', is installed and configured
CIS_PostgreSQL_13_v1.2.0_L1_OS_Linux.audit from CIS PostgreSQL 13 Benchmark v1.2.0