The MySQL Database Server 8.0 must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.
An XCCDF Rule
Description
<VulnDiscussion>Use of nonsecure network functions, ports, protocols, and services exposes the system to avoidable threats.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-235167r879756_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
Disable each prohibited network function, port, protocol, or service prohibited by the PPSM guidance.
Change mysql options related to network, ports, and protocols for the server and additionally consider refining further at user account level.
To set ports properly, edit the mysql configuration file and change ports or protocol settings.