Vulnerability remediation

Поиск
Список
Период
Сортировка
От Al Wilson
Тема Vulnerability remediation
Дата
Msg-id CAH05kiyz7hnbVEEXHc3ow7288OCfK-7jAGQ1JPBnYWRftx9_JA@mail.gmail.com
обсуждение исходный текст
Ответы Re: Vulnerability remediation  (Bzzzz <lazyvirus@gmx.com>)
Список pgsql-novice
Дерево обсуждения
Does anyone have any insight on this?  Perhaps point to something I can read?
  1. Vulnerability scanner indicates "Postgres default account: postgres/no password"
  2. Scanner  states Proof as "Successfully authenticated to the Postgres service with credentials uid [postgres] pw [realm]
  3. Application owner initially claimed that this was a false positive, but later claimed that it was resolved within the Docker instance
    1. Scanner still showed vulnerability.
  4. Found article that seemed to indicate that using the --env would address the postgres image vs. the Docker.
    1. https://squaredup.com/blog/running-postgres-in-docker/
    2. Scanner still shows vulnerability.
  5. PostGres version is 9.5, if that makes a difference.

В списке pgsql-novice по дате отправления:

Предыдущее
От: Ibrahim Shaame
Дата:
Сообщение: Re: reporting tree into separate columns
Следующее
От: Bzzzz
Дата:
Сообщение: Re: Vulnerability remediation