) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Crunchy Data PostgreSQL STIG Ver 2, Rel 2 Checklist Details (Checklist Revisions)
Supporting Resources:
-
Download Standalone XCCDF 1.1.4 - Crunchy Data PostgreSQL STIG - Ver 2, Rel 2
- Defense Information Systems Agency
Target:
| Target | CPE Name |
|---|---|
| CrunchyData PostgreSQL | cpe:/a:crunchydata:postgresql:- (View CVEs) |
Checklist Highlights
- Checklist Name:
- Crunchy Data PostgreSQL STIG
- Checklist ID:
- 981
- Version:
- Ver 2, Rel 2
- Type:
- Compliance
- Review Status:
- Final
- Authority:
- Governmental Authority: Defense Information Systems Agency
- Original Publication Date:
- 11/20/2020
Checklist Summary:
The Crunchy Data PostgreSQL Security Technical Implementation Guide (STIG) is published as a tool to improve the security of Department of Defense (DoD) information systems. This document is meant to be used in conjunction with the Red Hat Enterprise Linux (OS) STIG, Network STIG, and other STIGs as applicable to the database host environment. It is based on the Database Security Requirements Guide (SRG), Version 2, Release 10, which in turn derives its cybersecurity controls from National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53, Revision 4. Postgres (also known as PostgreSQL) is an open-source, community-developed database management system supported by the PostgreSQL Global Development Group. That body permits and encourages the modification, extension, and redistribution of its base product. Crunchy Data PostgreSQL supplies certified builds for enterprise distribution. One extension of importance to this STIG is pgAudit, also open source and developed by a parallel organization. This STIG requires that the product be deployed on a FIPS-compliant, cryptography-enabled operating system found in the Cryptographic Module Validation Program (https://csrc.nist.gov/projects/cryptographic-module-validation-program/validated-modules) or by other means ensure that FIPS 140-2-certified OpenSSL libraries are used by the database management system (DBMS).
Checklist Role:
- Database Management System
Known Issues:
Not provided.
Target Audience:
Parties within the DoD and Federal Government’s computing environments can obtain the applicable STIG from the Cyber Exchange website at https://cyber.mil/. This site contains the latest copies of STIGs, SRGs, and other related security information. Those without a Common Access Card (CAC) that has DoD Certificates can obtain the STIG from https://public.cyber.mil/.
Target Operational Environment:
- Managed
- Specialized Security-Limited Functionality (SSLF)
Testing Information:
Not provided.
Regulatory Compliance:
DoDI 8100.04
Comments/Warnings/Miscellaneous:
Not provided.
Disclaimer:
Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil. DISA will coordinate all change requests with the relevant DoD organizations before inclusion in this document. Approved changes will be made in accordance with the DISA maintenance release schedule.
Product Support:
Parties within the DoD and Federal Government’s computing environments can obtain the applicable STIG from the Cyber Exchange website at https://cyber.mil/. This site contains the latest copies of STIGs, SRGs, and other related security information. Those without a Common Access Card (CAC) that has DoD Certificates can obtain the STIG from https://public.cyber.mil/.
Point of Contact:
disa.stig_spt@mail.mil
Sponsor:
Not provided.
Licensing:
Not provided.
Change History:
corrected status - 4/28/2021 null Updated resource per DISA - 8/1/22 updated URLs - 1/26/24
Dependency/Requirements:
| URL | Description |
|---|
References:
| Reference URL | Description |
|---|