Trustwave Database Security Knowledgebase (ShatterKB) KB 6.54 is now available. It introduces new checks for PostgreSQL, Cassandra, and Microsoft SQL Server.
New Checks - Cassandra
- Ensure that Cassandra is using a non-privileged, dedicated service account
- Description: Check if Cassandra is using a non-privileged, dedicated service account
- Risk: Medium
- Ensure the Cassandra service is run as a non-root user
- Description: Check if Cassandra service is running as a root user
- Risk: Medium
- Ensure the latest version of Python is installed
- Description: Check if the latest Python is installed for the Cassandra version installed
- Risk: Medium
- Ensure the latest version of Java is installed
- Description: Check if the latest Java is installed for the Cassandra version installed
- Risk: Medium
- Ensure Cassandra role doesn't have default password
- Description: Check if Cassandra role has default password
- Risk: Medium
- Ensure that Cassandra only listens for network connections on authorized interfaces
- Description: Verify Cassandra only listens for network connections on authorized interface
- Risk: Medium
New Checks - Microsoft SQL Server
- Users Permissions to SQL server securables
- Description: Users Permissions to SQL server securables.
- Risk: Medium
New Checks - PostgreSQL
- Ensure the program name for PostgreSQL syslog messages is correct
- Description: Verify that program name for PostgreSQL syslog messages are set correctly.
- Risk: Medium
- Ensure sudo is configured correctly
- Description: Verify if access to the postgres superuser account is restricted in such a manner as to interdict unauthorized access.
- Risk: Medium
Availability
- Available to all AppDetectivePRO and DbProtect customers with maintenance (subscription or perpetual) in good standing at no additional cost
- Download SHATTER Knowledgebase from the Trustwave Support Portal. (https://www.trustwave.com/Company/Support/ and select AppDetectivePRO or DbProtect)
- AppDetectivePRO customers can use the Updater within the product as well.