The CrystalDB operations team continually assesses the risk from new security vulnerabilities found in PostgreSQL, its extensions, the underlying operating system, the hypervisor, and the libraries used in our management tools. We patch all of this software routinely on a schedule that takes into account the threat posed. In cases where a vulnerability fix requires a PostgreSQL restart, AutoDBA manages the timing to ensure minimal disruption.

CrystalDB enforces SSL connections and strong passwords. It also monitors your application for unusual login attempts and automatically throttles clients that make excessive failed connection attempts.