TF 0462 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Ensure server parameter 'connection_throttling' is set to 'ON' for PostgreSQL Database Server
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Service | database |
| Provider | Azure |
| Vulnerability Type | omission |
Description
The PostgreSQL server is not configured to enable 'connection_throttling', which means logging for connection throttling events is disabled. This reduces visibility into potential connection contention or abuse scenarios.
Impact
Without connection throttling logs, diagnosing connection-related issues and detecting abnormal access patterns becomes difficult. This can hinder incident response, delay troubleshooting, and potentially allow attackers or misconfigured applications to exhaust database resources undetected.
Resolution
Enable connection throttling logging