EP11-00-004850 - The EDB Postgres Advanced Server password file must not be used.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version


The EDB Postgres password file can contain passwords to be used if the connection allows a password (and no password has been specified otherwise).

This file contain lines of the following format:

It is critically important to system security that use of a password file be avoided as it stores passwords in plain text. Any user with access to these could potentially compromise the security of the database.


Remove any password files present on the server and implement a more secure form of authentication.

The DoD standard for authentication is DoD-approved PKI certificates.

See Also


Item Details

References: CAT|II, CCI|CCI-000366, Rule-ID|SV-224173r508023_rule, STIG-ID|EP11-00-004850, STIG-Legacy|SV-110213, STIG-Legacy|V-101109, Vuln-ID|V-224173

Plugin: Windows

Control ID: 9daf98e67eb2ed5e12f21d33bda0c293adda1eeec52ee81c8e4ea14886fd3ee1