Backup of configuration and related files
Details The following files should be included in the backup: – Configuration files (my.cnf and included files) – SSL files...
- Home
- Security Hardening
- CIS MySQL 5.7 Linux OS L1 V1.0.0
CIS MySQL 5.7 Linux OS L1 V1.0.0
Backup policy in place
Details A backup policy should be in place. NOTE: Nessus has not performed this check. Please review the benchmark to...Dedicate Machine Running MySQL
Details The attack surface is reduced on a server with only the underlying operating system, MySQL server software, and any...Disaster recovery plan
Details A disaster recovery plan should be created. A slave in a different datacenter can be used or offsite backups....Do Not Reuse Usernames
Details Utilizing unique database accounts across applications will reduce the impact of a compromised MySQL account. NOTE: Nessus has not...Do Not Specify Passwords in Command Line
Details When a command is executed on the command line, for example mysql -u admin – ppassword, the password may...Ensure ‘datadir’ Has Appropriate Permissions
Details The data directory is the location of the MySQL databases. Solution Execute the following commands at a terminal prompt:...Ensure ‘general_log_file’ Has Appropriate Permissions
Details MySQL can operate using a variety of log files, each used for different purposes. These are the binary log,...Ensure ‘log_bin_basename’ Files Have Appropriate Permissions
Details MySQL can operate using a variety of log files, each used for different purposes. These are the binary log,...Ensure ‘log_error’ Has Appropriate Permissions
Details MySQL can operate using a variety of log files, each used for different purposes. These are the binary log,...