Details

Limiting the accessibility of these objects will protect the confidentiality, integrity, and availability of the MySQL database. If someone can modify plugins then these plugins might be loaded when the server starts and the code will get executed.

Solution

To remediate these settings, execute the following commands at a terminal prompt using the plugin_dir Value from the audit procedure. chmod 775 (or use 755) chown mysql:mysql Impact: Users other than the mysql user will no longer be able to update and add/remove plugins unless they’re able to switch to the mysql user;

Supportive Information

The following resource is also helpful.

• https://workbench.cisecurity.org/files/1619

This control applies to the following type of system Windows.

Source

• Tenable.com/audits