Logging and monitoring

PostgreSQL instance with ‘log_connections’ flag disabled

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

PostgreSQL does not log attempted connections by default. Enabling the log_connections setting will create log entries for each attempted connection as well as successful completion of client authentication which can be useful in troubleshooting issues and to determine any unusual connection attempts to the server.
  • Recommended Mitigation

    Add the following database flag: 'log_connections=on'