klouddbshield icon indicating copy to clipboard operation
klouddbshield copied to clipboard
verified publisher icon klouddb

CIS Benchmark 3.1.15 reporting wrong results

Open quentinkhoo opened this issue 1 year ago • 1 comments

Hey guys, i was running the scan and I noticed that my check for the log_min_error_statement is failing even though this is set to error. I could be wrong but it seems like the logic in this portion of the code is reversed? should it be the following instead?

	// 3.1.15 Ensure the correct SQL statements generating errors are recorded
	if settingsMap["log_min_error_statement"] == "error" || settingsMap["log_min_error_statement"] == "fatal" || settingsMap["log_min_error_statement"] == "panic" {
		lmaResultsMap["log_min_error_statement"].Status = "Pass"
	} else {
		lmaResultsMap["log_min_error_statement"].Status = "Fail"
		lmaResultsMap["log_min_error_statement"].FailReason = "log_min_error_statement is not set correctly"
	}

quentinkhoo avatar Jan 21 '25 10:01 quentinkhoo

@quentinkhoo We will check this and get back to you shortly .. Please also try PII scanner , SSL checker and other features we released recently

klouddb avatar Jan 23 '25 12:01 klouddb

@quentinkhoo If you continue to face any issues, please reach out to us at [email protected]

klouddb avatar Oct 01 '25 07:10 klouddb