Skip to content

The MySQL Database Server 8.0 must utilize centralized management of the content captured in audit records generated by all components of the MySQL Database Server 8.0.

An XCCDF Rule

Description

<VulnDiscussion>The content captured in audit records must be managed from a central location (necessitating automation). Centralized management of audit records and logs provides for efficiency in maintenance and management of records, as well as the backup and archiving of those records. The MySQL Server writes audit records to files in the file system and this data is available via ReadOnly using functions within the MySQL Server. These files are available via SQL functions or on the filesystem in JSON and XML formats providing compatibility for off-loading audit records to centralized system(s).</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID
SV-235171r879729_rule
Severity
Medium
References
Updated



Remediation - Manual Procedure

Configure and/or deploy software tools to ensure that MySQL Server audit records are written directly to or systematically transferred to a centralized log management system.