PostgreSQL instance with ‘log_statement_stats’ enabled
The log_statement_stats flag enables a crude profiling method for logging parser performance statistics which even though can be useful for...
Blog
PostgreSQL instance where ‘log_temp_files’ flag value isn’t set to 0
PostgreSQL can create a temporary file for actions such as sorting, hashing and temporary query results when these operations exceed...
PostgreSQL instance with ‘log_error_verbosity’ flag set to ‘terse’
Auditing helps in troubleshooting operational problems and also permits forensic analysis. If log_error_verbosity is not set to the correct value,...
CloudWatch alarms not monitoring security groups configuration
AWS CloudWatch alarms feature allows to watch metrics and receive notifications when metrics fall outside the settings you configured. We...
Microsoft Defender for Resource Manager is disabled
Enabling Azure Defender for Resource Manager allows for greater defense-in-depth, with threat detection provided by the Microsoft Security Response Center...
Microsoft Defender for Azure Cosmos DB is disabled
Enabling Microsoft Defender for Azure Cosmos DB allows for greater defense-in-depth, with threat detection provided by the Microsoft Security Response...
S3 Bucket Server Access Logging is Disabled
Ensure that AWS S3 Server Access Logging feature is enabled in order to record access requests useful for security audits....
Microsoft Defender for open-source relational databases is disabled
Enabling Microsoft Defender for open-source relational databases allows for greater defense-in-depth, with threat detection provided by the Microsoft Security Response...
Microsoft Defender High Severity Alerts Not Notified
Enabling security alert emails ensures that security alert emails are received from Microsoft. This ensures that the right people are...