security

8 articles

All tutorials 16 gdpr 15 security 8 dora 5

securityFeb 12, 2026·2 min read

PostgreSQL Row-Level Security (RLS): Complete Guide for Multi-Tenant Applications

Implement Row-Level Security in PostgreSQL for multi-tenant isolation. Enable RLS, create policies, and verify with pgcomply.

Key: RLS is enforced by PostgreSQL itself — no application code can bypass it (unlike application-level filtering)

row-level-securityrlspostgresql

securityFeb 12, 2026·3 min read

PostgreSQL Sicherheitshärtung: Checkliste mit 14 kritischen Prüfungen

PostgreSQL absichern nach CIS Benchmark. SSL, SCRAM-SHA-256, RLS, Logging und automatisierte Sicherheitsprüfung.

Key: SSL/TLS muss auf allen Produktionsdatenbanken erzwungen werden — ohne SSL gehen Passwörter im Klartext über das Netzwerk

postgresqlsicherheithärtung

securityFeb 10, 2026·5 min read

PostgreSQL Security Hardening Checklist (2026): 14 Critical Checks

PostgreSQL security hardening checklist with 14 CIS-based checks. SSL, SCRAM-SHA-256, RLS, logging, and automated assessment.

Key: SSL should always be enforced in production — ssl=off means credentials travel in plaintext

postgresqlsecurityhardening

securityFeb 8, 2026·2 min read

Dynamic Data Masking in PostgreSQL: Techniques for PII Protection

Dynamic data masking in PostgreSQL for PII protection. Partial, full, and hash masking with role-based exemptions.

Key: Dynamic masking protects PII at query time — the original data remains intact in storage

data-maskingpii-protectionpostgresql

securityFeb 6, 2026·3 min read

Building an Immutable Audit Trail in PostgreSQL

Build an immutable audit trail in PostgreSQL with SHA-256 hash chains. Tamper-proof logging for SOC 2, GDPR, and DORA compliance.

Key: Standard PostgreSQL logging (pg_audit) is mutable — a superuser can delete log entries without detection

audit-trailpostgresqlimmutable-log

securityDec 18, 2025·3 min read

PostgreSQL Password Policy Enforcement: Beyond Default Settings

Enforce password policies in PostgreSQL beyond defaults. SCRAM-SHA-256, complexity rules, rotation, and per-role compliance status.

Key: PostgreSQL accepts any string as a password by default — there is no built-in complexity check

postgresqlpassword-policyauthentication

securityDec 15, 2025·4 min read

PostgreSQL Connection Security Audit: Finding Hidden Risks

Audit PostgreSQL connection security. Find idle connections, missing SSL, timeout gaps, and wraparound risk.

Key: connection_audit() runs six checks: utilization, idle connections, SSL, timeouts, wraparound, bloat

postgresqlconnection-securityaudit

securityDec 10, 2025·4 min read

Least Privilege Access Control in PostgreSQL: A Practical Guide

Implement least privilege access control in PostgreSQL. Audit permissions, eliminate over-provisioning, enforce role separation.

Key: Never use superuser accounts for application access — create specific roles with minimal GRANTs

postgresqlleast-privilegeaccess-control