Skip to content

The MySQL Database Server 8.0 must be able to generate audit records when successful accesses to objects occur.

An XCCDF Rule

Description

Without tracking all or selected types of access to all or selected objects (tables, views, procedures, functions, etc.), it would be difficult to establish, correlate, and investigate the events relating to an incident, or identify those responsible for one. In an SQL environment, types of access include, but are not necessarily limited to: SELECT INSERT UPDATE DELETE EXECUTE

ID
SV-235131r961836_rule
Version
MYS8-00-004400
Severity
Medium
References
Updated

Remediation Templates

A Manual Procedure

Configure the MySQL Database Server to audit when successful accesses to objects occur. 

See the supplemental file "MySQL80Audit.sql".