MYS8-00-003900 - The MySQL Database Server 8.0 must generate audit records when unsuccessful logons or connection attempts occur.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

For completeness of forensic analysis, it is necessary to track failed attempts to log on to the Database Management System (DBMS). While positive identification may not be possible in a case of failed authentication, as much information as possible about the incident must be captured.

Solution

If currently required, configure the MySQL Database Server to audit when unsuccessful logons or connections attempts occur.

See the supplemental file 'MySQL80Audit.sql'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Oracle_MySQL_8-0_V2R1_STIG.zip

Item Details

References: CAT|II, CCI|CCI-000172, Rule-ID|SV-235126r961824_rule, STIG-ID|MYS8-00-003900, Vuln-ID|V-235126

Plugin: MySQLDB

Control ID: c2c46b8fc3df8cf8a7d27fe01ce1758cd27d921ecf0a7ce5b1a69132e91f572a