POSTGRESQL DATABASES SECURITY CONFIGURATION CHECKLIST

Rinalds Gudriks, Sergejs Kodors

Abstract


The paper provides PostgreSQL configuration checklist to make databases safer. The main part describes with examples about vulnerabilities and how to solve them.

Keywords


PostgreSQL; configuration checklist; databases; security; vulnerabilities

Full Text:

PDF

References


What is PostgreSQL? [Tiešsaiste]Pieejams: https://www.postgresql.org/about/ [Piekļuve: 15.04.2019.]

Why use PostgreSQL? [Tiešsaiste]Pieejams: https://www.postgresql.org/about/ [Piekļuve: 15.04.2019.]

How to Secure PostgreSQL Database [Tiešsaiste]Pieejams: https://severalnines.com/blog/how-secure-your-postgresql-database-10-tips [Piekļuve: 15.04.2019.]

OWASP Backend Security Project PostgreSQL Hardening [Tiešsaiste]Pieejams: https://www.owasp.org/index.php/OWASP_Backend_Security_Project_PostgreSQL_Hardening [Piekļuve: 15.04.2019.]

Security Best Practises for Postgres [Tiešsaiste]Pieejams: https://info.enterprisedb.com/rs/069-ALB-339/images/security-best-practices-for-postgres.pdf?_ga=2.214934679.1028117103.1555331894-483784908.1552467399 [Piekļuve: 15.04.2019.]

The pg_hba.conf File [Tiešsaiste]Pieejams: https://www.postgresql.org/docs/9.6/auth-pg-hba-conf.html [Piekļuve: 15.04.2019.]

Secure TCP/IP Connection with SSL [Tiešsaiste]Pieejams: https://www.postgresql.org/docs/9.6/ssl-tcp.html [Piekļuve: 15.04.2019.]

pgcrypto [Tiešsaiste]Pieejams: https://www.postgresql.org/docs/current/pgcrypto.html [Piekļuve: 15.04.2019.]

Encription data with pgcrypto [Tiešsaiste]Pieejams: http://www.postgresonline.com/journal/archives/165-Encrypting-data-with-pgcrypto.html [Piekļuve: 15.04.2019.]

Row Security Policies [Tiešsaiste]Pieejams: https://www.postgresql.org/docs/9.6/ddl-rowsecurity.html [Piekļuve: 15.04.2019.]




DOI: http://dx.doi.org/10.17770/het2019.23.4386

Refbacks

  • There are currently no refbacks.