1.7 Command history - ~/.mysql_history

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

All commands run in the MySQL console application are saved to a history file. Disabling the MySQL command history reduces the probability of exposing sensitive information, such as passwords.

Solution

Admin and DBA's should disable command history by setting MYSQL_HISTFILE to /dev/null or linking .mysql_history to /dev/null

See Also

https://workbench.cisecurity.org/files/1613

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7, CSCv6|9.1

Plugin: Unix

Control ID: 42f161a7090d02a534d757857f361d71385821cdc98e456c3d0d8d1606886fc6