Ensure server parameter ’log_checkpoints’ is set to ‘ON’ for PostgreSQL Database Server
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | database |
| Provider | Azure |
| Vulnerability Type | omission |
Description#
The PostgreSQL server is not configured to log checkpoints, which reduces visibility into database operations and hinders the ability to audit or troubleshoot issues effectively. Missing the ’log_checkpoints’ parameter set to ‘on’ leaves gaps in operational logging.
Impact#
Without checkpoint logging, errors and queries related to database checkpoints are not recorded, making it difficult to detect, investigate, or respond to failures and suspicious activities. This can delay incident response, obscure root cause analysis, and potentially allow malicious actions or misconfigurations to go unnoticed.
Resolution#
Enable checkpoint logging