MADB-10-007200 - MariaDB must provide centralized configuration of the content to be captured in audit records generated by all components of the DBMS.

Information

If the configuration of the DBMS's auditing is spread across multiple locations in the database management software, or across multiple commands, only loosely related, it is harder to use and takes longer to reconfigure in response to events.

The DBMS must provide a unified tool for audit configuration.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Configure and/or deploy software tools to ensure that MariaDB audit records are written directly to or systematically transferred to a centralized log management system.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MariaDB_Enterprise_10-x_V2R1_STIG.zip

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-3(2), CAT|II, CCI|CCI-001844, Rule-ID|SV-253726r879729_rule, STIG-ID|MADB-10-007200, Vuln-ID|V-253726

Plugin: MySQLDB

Control ID: 4877c313016f925c42c13d346c1c5fbf6f2c64fb527fb4a6e755593aef0c075d