Cloudanix home page

Login
Community
Login

GCP Misconfigurations

CloudSql Audit

GCP Introduction

Authenticating your GCP account

GCP Pricing

GCP Services which determine your cost

GCP Threats

Getting Started with gcp Realtime Events

GCP Misconfigurations

Getting Started with GCP Audit
CloudSql Audit
Cloud Tasks Monitoring
Dataflow Monitoring
Function Monitoring
Monitoring Compliance
PubSubLite Monitoring
Spanner Monitoring
NoSQL Monitoring
Compute Audit
IAM Audit
BigQuery Monitoring
CDN Monitoring
DNS Monitoring
KMS Monitoring
Kubernetes Audit
Load Balancer Monitoring
Log Monitoring
Storage Audit
Pub/Sub Monitoring
VPC Audit
IAM Deep Dive

Resources

GCP Services which determine your cost

GCP Threats

Getting Started with gcp Realtime Events

GCP Misconfigurations

CloudSql Audit

Checks performed

Root User Should Not Be Accessible From Any Host
Databases Should Have SSL
Point In Time Restore Should Be Enabled
DB Instances Should Not Be Publicly Accessible
Instances Should Be Multi AZ
Automated Backups Should Be Enabled
Database Instances Should Not Have Public IPs
Cross DB Ownership Chaining Should Be Disabled
Database Authentication Flag Should Be Disabled
MySQL Local Infile Flag Should Be Disabled
PostgreSQL Log Checkpoints Flag Should Be Disabled
PostgreSQL Log Connections Flag Should Be On
PostgreSQL Log Disconnections Flag Should Be Disabled
PostgreSQL Log Lock Waits Flag Should Be Disabled
PostgreSQL Log Min Messages Flag Should Be Disabled
PostgreSQL Log Temp Files Flag Should Be 0
PostgreSQL Log Min Duration Statement Flag Should Be -1
Database SSL Certificate Should Be Rotated After Every 90 Days
Read Replica Instances Should Not Be public
Determine SQL Instances Provisioned are of Desired Type
SQL Instance Should Have Backend Type Second Generation
SQL Instances Should Be Encrypted Using Customer Managed Keys (CMKs)
SQL Instances should have Storage Auto Resize Enabled
Provisioned Instances Should Not Exceed Set Threshold
SQL Instances Should Not Be Configured with Barred Usernames
Minimum Number of SQL Backups To Be Retained
SQL Instances Should Be Configured with the Latest SQL Versions
SQL Read Replica Instances Should Be Encrypted Using Customer Managed Keys (CMKs)
SQL Backup Configuration Should Be Enabled
SQL Instances Should Have Maintenance Scheduled Within the Next 30 Day
SQL Query Insights should be Enabled
SQL Instances Should Have Binary Logging Enabled
PostgreSQL Log Min Error Statement Flag Should Be Error Or Stricter
PostgreSQL Log Parser Stats Flag Should Be Off
PostgreSQL Log Planner Stats Flag Should Be Off
PostgreSQL Log Executor Stats Flag Should Be Off
PostgreSQL Log Statement Stats Flag Should Be Set Appropriately
PostgreSQL External Scripts Enabled Flag Should Be Off
SQL Server User Connections Flag Should Be A Non-Limiting Value
SQL Server User Options Flag Should Not Be Configured
SQL Server Remove Access Flag Should Be Off
SQL Server Trace Flag Should Be Off
PostgreSQL Enable PGAudit Database Flag Should Be On
MySQL Skip Show Database Flag Should Be On
PostgreSQL Log Hostname Flag Should Be On
PostgreSQL Log Statement Flag Should Be Set Appropriately
PostgreSQL Log Error Verbosity Flag Should Be DEFAULT Or Stricter

Getting Started with GCP Audit Cloud Tasks Monitoring

Powered by Mintlify

On this page

Checks performed