MYS8-00-007800 – The MySQL Database Server 8.0 must initiate session auditing upon startup – audit-log
Details Session auditing is for use when a user’s activities are under investigation. To be sure of capturing all activity...
- Home
- Security Hardening
- DISA Oracle MySQL 8.0 V1R2 OS Linux
DISA Oracle MySQL 8.0 V1R2 OS Linux
MYS8-00-007800 – The MySQL Database Server 8.0 must initiate session auditing upon startup – plugin-load-add
Details Session auditing is for use when a user’s activities are under investigation. To be sure of capturing all activity...MYS8-00-009200 – The MySQL Database Server 8.0 must enforce access restrictions associated with changes to the configuration of the MySQL Database Server 8.0 or database(s) – auto.cnf
Details Failure to provide logical access restrictions associated with changes to configuration may have significant effects on the overall security...MYS8-00-009200 – The MySQL Database Server 8.0 must enforce access restrictions associated with changes to the configuration of the MySQL Database Server 8.0 or database(s) – my.cnf
Details Failure to provide logical access restrictions associated with changes to configuration may have significant effects on the overall security...MYS8-00-011500 – The MySQL Database Server 8.0 must use NSA-approved cryptography to protect classified information in accordance with the data owner’s requirements – tls_ciphersuites TLSv1.3
Details Use of weak or untested encryption algorithms undermines the purposes of utilizing encryption to protect data. The application must...MYS8-00-001400 – The audit information produced by the MySQL Database Server 8.0 must be protected from unauthorized deletion – data directory
Details If audit data were to become compromised, then competent forensic analysis and discovery of the true source of potentially...MYS8-00-011900 – The MySQL Database Server 8.0 must only accept end entity certificates issued by DoD PKI or DoD-approved PKI Certification Authorities (CAs) for the establishment of all encrypted sessions.
Details Only DoD-approved external PKIs have been evaluated to ensure they have security controls and identity vetting procedures in place...MYS8-00-001800 – The MySQL Database Server 8.0 must be able to generate audit records when privileges/permissions are retrieved.
Details Under some circumstances, it may be useful to monitor who/what is reading privilege/permission/role information. Therefore, it must be possible...MYS8-00-001900 – The MySQL Database Server 8.0 must be able to generate audit records when unsuccessful attempts to retrieve privileges/permissions occur.
Details Under some circumstances, it may be useful to monitor who/what is reading privilege/permission/role information. Therefore, it must be possible...MYS8-00-002000 – The MySQL Database Server 8.0 must be able to generate audit records when security objects are accessed.
Details Changes to the security configuration must be tracked. This requirement applies to situations where security data is retrieved or...