Ensure server parameter ’log_connections’ is set to ‘ON’ for PostgreSQL Database Server
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | database |
| Provider | Azure |
| Vulnerability Type | omission |
Description#
The PostgreSQL server is not configured to log successful connection attempts. Without ’log_connections’ set to ‘ON’, connection events are not recorded, reducing audit visibility.
Impact#
Lack of connection logging makes it difficult to detect unauthorized access, investigate security incidents, or troubleshoot configuration issues. This can allow attackers to connect to the database without leaving an audit trail, increasing the risk of undetected breaches.
Resolution#
Enable connection logging