Fluid Attacks Database

Description

Detects Azure PostgreSQL databases with disabled logging configurations that could impact security monitoring capabilities. This vulnerability indicates that critical logging parameters like connection tracking, query duration monitoring, or checkpoint logging are disabled, which reduces audit trail effectiveness and security visibility.

Weakness:

446 - Insecure service configuration - Azure

Category: Functionality Abuse

Detection Strategy

• Checks if log_checkpoints parameter is disabled in PostgreSQL server configuration

• Verifies if log_connections parameter is disabled, preventing tracking of new connections

• Confirms if log_disconnections parameter is disabled, which prevents tracking of session terminations

• Examines if log_duration parameter is disabled, which prevents monitoring of query execution times

Free trial

Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.