Ensure Passwords Are Not Stored in the Global Configuration – /etc/my.cnf
Details The [client] section of the MySQL configuration file allows setting a user and password to be used. Verify the...
- Home
- Security Hardening
- CIS MySQL 5.7 Linux OS L1 V1.0.0
CIS MySQL 5.7 Linux OS L1 V1.0.0
Ensure Passwords Are Not Stored in the Global Configuration – /etc/mysql/my.cnf
Details The [client] section of the MySQL configuration file allows setting a user and password to be used. Verify the...Ensure Passwords Are Not Stored in the Global Configuration – @SYSCONFDIR@/my.cnf
Details The [client] section of the MySQL configuration file allows setting a user and password to be used. Verify the...Ensure Plugin Directory Has Appropriate Permissions
Details The plugin directory is the location of the MySQL plugins. Plugins are storage engines or user defined functions (UDFs)....Ensure ‘relay_log_basename’ Files Have Appropriate Permissions
Details MySQL can operate using a variety of log files, each used for different purposes. These are the binary log,...Ensure ‘slow_query_log’ Has Appropriate Permissions
Details MySQL can operate using a variety of log files, each used for different purposes. These are the binary log,...Ensure SSL Key Files Have Appropriate Permissions
Details When configured to use SSL/TLS, MySQL relies on key files, which are stored on the host’s filesystem. These key...Secure backup credentials
Details NOTE : Nessus has not performed this query, and this check is only provided for informational purposes. Solution Change...The backups should be properly secured
Details The backup files will contain all data in the databases. Filesystem permissions and/or encryption should be used to prevent...Use Dedicated Least Privileged Account for MySQL Daemon/Service
Details As with any service installed on a host, it can be provided with its own user context. Providing a...