MYS8-00-003800 - The MySQL Database Server 8.0 must generate audit records when successful logons or connections occur.

Information

For completeness of forensic analysis, it is necessary to track who/what (a user or other principal) logs on to the Database Management System (DBMS).

Solution

If currently required, configure the MySQL Database Server to produce audit records when successful logons or connections occur.

See the supplemental file 'MySQL80Audit.sql'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Oracle_MySQL_8-0_V2R1_STIG.zip

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-12c., CAT|II, CCI|CCI-000172, Rule-ID|SV-235125r961824_rule, STIG-ID|MYS8-00-003800, Vuln-ID|V-235125

Plugin: MySQLDB

Control ID: 6184a7fbbea4c194df1ca25c8f54f1bd1141f6dcd96b911e7bdcfaed8de5af4a