Crunchy Data has recently announced an update to the CIS PostgreSQL Benchmark by the Center for Internet Security, a nonprofit organization that provides publications around standards and best practices for securing technologies systems.
How can you get PostgreSQL to use FIPS 140-2 crypto? The answer, to some extent, depends on how rigorously you need to be able to prove your answer. If the proof required is more than a casual check, the process is not well documented as far as I can tell. Therefore I will attempt to address that deficiency here.
Crunchy Data is pleased to announce the publication of the Crunchy Data PostgreSQL Security Technical Implementation Guide (STIG) by the United States Defense Information Systems Agency (DISA). PostgreSQL was the first open source database to provide a published STIG, and Crunchy Data is proud to update and improve the STIG as PostgreSQL continues to advance and evolve.
The CIS PostgreSQL 12 Benchmark continues to build upon previous versions and Crunchy Data’s efforts with the PostgreSQL Security Technical Implementation Guide.
Learn how to set up PostgreSQL certificate-based authentication with a simple Docker container recipe.
CVE-2018-1058 discusses how a PostgreSQL user can create trojans with unexpected results. Learn how to prevent this along with other security concepts.
Explore how the PostgreSQL extension crunchy_check_access helps you to understand default PostgreSQL security settings and how it impacts your users.
The PostgreSQL Global Development Group provided an out-of-cycle update release for all supported to provide a fix for the CVE-2019-10164 vulnerability. This vulnerability only affects people running PostgreSQL 10, 11 or the 12 beta, and it is effectively remediated by simply upgrading all of your PostgreSQL installations to the latest versions.
Crunchy Data recently announced an update to the CIS PostgreSQL Benchmark for PostgreSQL 10. This newly published CIS PostgreSQL 10 Benchmark joins the existing CIS Benchmarks for PostgreSQL 9.5 and 9.6 while building on our efforts with the PostgreSQL Security Technical Implementation Guide (STIG).