Skip to content

Access Control: Exposed PostgreSQL Server

Identifier: psql_exposed

Scanner(s) Support

GraphQL Scanner REST Scanner WebApp Scanner ASM Scanner

Description

Check if the PostgreSQL server is exposed to the public.

Exposed PostgreSQL servers should be configured to only allow connections from trusted IP addresses or networks to prevent unauthorized access.

Configuration

Example

Example configuration:

---
security_tests:
  psql_exposed:
    skip: false

Reference

skip

Type : boolean

Skip the test if true.