22 matches found
GaussDB Kernel: Configuring the SSL Protocol
The SSL protocol improves data security and integrity for network communications. You are strongly advised to use SSL for TCP or IP connections when using the database. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright ...
GaussDB Kernel: Authentication Parameters
Set login parameters for scanning GaussDB Kernel database. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; yo...
GaussDB Kernel: Resource Labels
You can add a resource label to a group of database resources to control them, improving resource management efficiency. Therefore, you are advised to enable enablesecuritypolicy. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are...
GaussDB Kernel: Configuring the Levels of Logs to Be Written into the Server
The parameter logerrorverbosity specifies the level of logs to be written into the server. The value can be TERSE, DEFAULT, or VERBOSE. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
GaussDB Kernel: Configuring the SSL Encryption Algorithm
sslciphers specifies the SSL encryption algorithms used for secure connections. GaussDB Kernel supports the following algorithms: - DHE-RSA-AES128-GCM-SHA256 - DHE-RSA-AES256-GCM-SHA384 - DHE-RSA-AES128-CCM - DHE-RSA-AES256-CCM You are advised to set sslciphers to ALL. Then, GaussDB Kernel uses...
GaussDB Kernel: Configuring the Level of Error-Deriving SQL Statements to Be Logged
The logminerrorstatement parameter specifies which level of SQL statements that cause an error will be recorded into server logs. SQL statements whose levels are higher than or equal to the configured level will be recorded into server logs. The valid values include DEBUG5, DEBUG4, DEBUG3, DEBUG2...
GaussDB Kernel: Prohibiting New Connections to Database Templates
To prevent improper modification of the database template, you need to set the datallowconn field in the system catalog pgdatabase to false, prohibiting new connections to the database. If the database template template1 is set to deny user connections, database upgrade will be affected. If...
GaussDB Kernel: Documenting Database Templates
All database templates must be documented. You need to carefully check any database templates without specific use. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
GaussDB Kernel: Enabling the Auditing of Database Login and Logout
The parameter auditloginlogout specifies whether to audit user login and logout. After this parameter is set to on, users logged in to the database and the time when they logged out are traced. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced...
GaussDB Kernel: Configuring the Client Log Message Level
The parameter clientminmessages specifies the level of messages to be sent to the client. The valid values include DEBUG5, DEBUG4, DEBUG3, DEBUG2, DEBUG1, LOG, NOTICE, WARNING, ERROR, FATAL, and PANIC. It must be NOTICE at least. After a level is selected, messages at this level and its lower...
GaussDB Kernel: Configuring the Number of Days Before Which a Password Cannot Be Reused
You are advised to configure the number of days before which a password cannot be reused. This protects a password from being cracked due to repeated usage. After the parameter passwordreusetime is set, a password can be reused only after the number of days specified by the parameter. Copyright C...
GaussDB Kernel: Configuring the Number of Authentication and Encryption Iterations
Configure the number of iterations during the generation of encryption information for authentication. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
GaussDB Kernel: Configuring the Backslash Quote Usage
backslashquote specifies whether a single quotation mark Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...
GaussDB Kernel: Unknown Roles
Check the purpose of each unknown role in the query and delete unnecessary Roles. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progr...
GaussDB Kernel: Configuring the Validity Period of User Roles
During role creation, the keyword VALID BEGIN is used to set the role validity start time and VALID UNTIL to set the end time. If these two keywords are not set, roles are permanently valid. The role expiration time on each node in the GaussDB Kernel cluster depends on the OS clock on each node...
GaussDB Kernel: Configuring the Port
To prevent unauthorized connections to the database and illegal operations on data, you need to change the default port number in time. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
GaussDB Kernel: Configuring Rsyslog for Unified Audit Logs
By default, unified audit logs are output to the Rsyslog on each CN. User root is authorized to configure and view the logs. Ensure that enablesecuritypolicy is Enabled. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright...
GaussDB Kernel: Configuring the Password Complexity Check
For database security purposes, password complexity is checked during user creation and password changes. Passwords not meeting complexity requirements are not allowed in GaussDB Kernel. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources,...
GaussDB Kernel: Configuring the Password Encryption Mode
GaussDB Kernel supports two password encryption modes: MD5 and SHA256. MD5 is an insecure encryption mode and should not be configured. This mode is reserved only for compatibility with open-source third-party tools. SHA256 default configuration should be used. Copyright C 2020 Greenbone Networks...
GaussDB Kernel: Configuring the Maximum Logging Duration of a Log File
The parameter logrotationage specifies the maximum logging duration of a log file. After the time expires, another log file is automatically created. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...