Logging and monitoring

Azure PostgreSQL flexible Server ‘connection_throttle.enable’ parameter is set to ‘OFF’

Platform(s)
Compliance Frameworks

Description

It was detected that 'connection_throttle.enable' parameter is set to 'OFF' for {AzurePostgresFlexibleServer} PostgreSQL flexible Server. When this parameter is set to 'ON', it enables temporary connection throttling per IP for too many login failures. Throttling Connections helps the PostgreSQL flexible server to set the verbosity of logged messages, which can help identify DOS attacks.

  • Recommended Mitigation

    For each server, under server Parameters, set 'connection_throttle.enable' to 'ON'

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.