Ensure that logging of connections is enabled.
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | sql |
| Provider | |
| Vulnerability Type | omission |
Description#
The database instance is not configured to log connection attempts, resulting in missing records of session activity and access events. This lack of logging reduces visibility into who is accessing the database and when.
Impact#
Without connection logs, it becomes difficult to detect unauthorized access, investigate security incidents, or identify patterns indicative of attacks such as denial-of-service or brute-force attempts. This can hinder incident response and compliance efforts.
Resolution#
Enable connection logging.