Detections
Analytics

CIS PostgreSQL 14 OS v 1.2.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS PostgreSQL 14 OS v 1.2.0

Updated: 2/4/2026

Authority: CIS

Plugin: Unix

Revision: 1.2

Estimated Item Count: 18

File Details

Filename: CIS_PostgreSQL_14_v1.2.0_L1_OS_Linux.audit

Size: 43.5 kB

MD5: 87128007ce0ee86a65ec02edfdf41d1e
SHA256: 8f0042e16bc9a44e8244c568620c2811a49dbf1cfb84f67631638e68d3d39957

Audit Items

DescriptionCategories
1.1 Ensure packages are obtained from authorized repositories
1.3 Ensure systemd Service Files Are Enabled
1.4 Ensure Data Cluster Initialized Successfully
1.6 Verify That 'PGPASSWORD' is Not Set in Users' Profiles
1.7 Verify That the 'PGPASSWORD' Environment Variable is Not in Use
2.1 Ensure the file permissions mask is correct
2.2 Ensure extension directory has appropriate ownership and permissions
2.3 Disable PostgreSQL Command History
2.4 Ensure Passwords are Not Stored in the service file
4.1 Ensure Interactive Login is Disabled
4.2 Ensure sudo is configured correctly
5.1 Do Not Specify Passwords in the Command Line
5.3 Ensure login via 'local' UNIX Domain Socket is configured correctly
5.4 Ensure login via 'host' TCP/IP Socket is configured correctly
6.7 Ensure FIPS 140-2 OpenSSL Cryptography Is Used
6.10 Ensure Weak SSL/TLS Ciphers Are Disabled
8.2 Ensure the backup and restore tool, 'pgBackRest', is installed and configured
CIS_PostgreSQL_14_v 1.2.0_L1_OS_Linux.audit from CIS PostgreSQL 14 Benchmark v 1.2.0