Oct 31, 2023 Miscellaneous- Audit deprecated.
- Metadata updated.
- References updated.
|
Apr 12, 2023 |
Mar 7, 2023 Miscellaneous- Metadata updated.
- References updated.
|
Feb 27, 2023 Miscellaneous- Metadata updated.
- See also link updated.
- Variables updated.
|
Dec 7, 2022 |
Jun 10, 2022 Functional Update- VCPG-67-000001 - VMware Postgres must limit the number of connections.
Informational Update- VCPG-67-000001 - VMware Postgres must limit the number of connections.
- VCPG-67-000002 - VMware Postgres log files must contain required fields.
- VCPG-67-000003 - VMware Postgres configuration files must not be accessible by unauthorized users.
- VCPG-67-000004 - VMware Postgres must be configured to overwrite older logs when necessary.
- VCPG-67-000005 - VMware Postgres database must protect log files from unauthorized access and modification.
- VCPG-67-000008 - All VCDB tables must be owned by the 'vc' user account - vc user account.
- VCPG-67-000009 - VMware Postgres must limit modify privileges to authorized accounts.
- VCPG-67-000012 - VMware Postgres must require authentication on all connections.
- VCPG-67-000013 - VMware Postgres must be configured to use TLS.
- VCPG-67-000014 - VMware Postgres must enforce authorized access to all PKI private keys.
- VCPG-67-000015 - VMware Postgres must use FIPS 140-2 approved TLS ciphers.
- VCPG-67-000016 - VMware Postgres must write log entries to disk prior to returning operation success or failure - fsync
- VCPG-67-000016 - VMware Postgres must write log entries to disk prior to returning operation success or failure - full_page_writes
- VCPG-67-000016 - VMware Postgres must write log entries to disk prior to returning operation success or failure - synchronous_commit
- VCPG-67-000017 - VMware Postgres must not allow schema access to unauthorized accounts.
- VCPG-67-000019 - VMware Postgres must provide non-privileged users with minimal error information.
- VCPG-67-000020 - VMware Postgres must have log collection enabled.
- VCPG-67-000021 - VMware Postgres must be configured to log to stderr.
- VCPG-67-000022 - Rsyslog must be configured to monitor VMware Postgres logs - first
- VCPG-67-000022 - Rsyslog must be configured to monitor VMware Postgres logs - log
- VCPG-67-000023 - VMware Postgres must use Coordinated Universal Time (UTC) for log timestamps.
- VCPG-67-000024 - VMware Postgres must set client-side character encoding to UTF-8.
Miscellaneous- Metadata updated.
- References updated.
- See also link updated.
Added- VCPG-67-000018 - Data from the vPostgres database must be protected from unauthorized transfer.
- VCPG-67-000025 - The vPostgres database security updates and patches must be installed in a timely manner in accordance with site policy.
|
Apr 25, 2022 |
Jan 18, 2022 Miscellaneous- Metadata updated.
- References updated.
|