| 1.1 Ensure packages are obtained from authorized repositories | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.2 Ensure systemd Service Files Are Enabled | CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION |
| 1.3 Ensure Data Cluster Initialized Successfully | ACCESS CONTROL, MEDIA PROTECTION |
| 2.1 Ensure the file permissions mask is correct | ACCESS CONTROL, MEDIA PROTECTION |
| 4.1 Ensure sudo is configured correctly - /etc/sudoers | ACCESS CONTROL |
| 4.1 Ensure sudo is configured correctly - /etc/sudoers.d/postgres | ACCESS CONTROL |
| 5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly - local UNIX Domain Socket is configured correctly | IDENTIFICATION AND AUTHENTICATION |
| 5.2 Ensure login via 'host' TCP/IP Socket is configured correctly - host TCP/IP Socket is configured correctly | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 6.7 Ensure FIPS 140-2 OpenSSL Cryptography Is Used - fips_enabled | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 6.7 Ensure FIPS 140-2 OpenSSL Cryptography Is Used - openssl version | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 7.3 Ensure base backups are configured and functional | CONTINGENCY PLANNING |
| 8.2 Ensure the backup and restore tool, 'pgBackRest', is installed and configured - pgBackRest, is installed and configured | CONTINGENCY PLANNING |
| CIS_PostgreSQL_15_v1.0.0_L1_OS_Linux.audit from CIS PostgreSQL 15 Benchmark v1.0.0 | |
