Detections
Analytics

CIS MySQL 5.7 Windows OS L1 v1.0.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS MySQL 5.7 Windows OS L1 v1.0.0

Updated: 12/7/2022

Authority: CIS

Plugin: Windows

Revision: 1.22

Estimated Item Count: 45

File Details

Filename: CIS_MySQL_5.7_Community_Benchmark_v1.0.0_OS_MS_L1.audit

Size: 80.2 kB

MD5: 7845caec36cbb6f5ea8d0b749f8a2c39
SHA256: 3978fd8d15bfb7f8e8401dd4d678cae48ca9ac0da30b218b9e4a3cb72b4e573b

Audit Items

DescriptionCategories
1.2 Use Dedicated Least Privileged Account for MySQL Daemon/Service
1.4 Verify That the MYSQL_PWD Environment Variables Is Not In Use
1.6 Verify That 'MYSQL_PWD' Is Not Set In Users' Profiles
2.1.1 Backup policy in place
2.1.2 Verify backups are good
2.1.3 Secure backup credentials
2.1.4 The backups should be properly secured
2.1.6 Disaster recovery plan
2.1.7 Backup of configuration and related files
2.2 Dedicate Machine Running MySQL
2.3 Do Not Specify Passwords in Command Line
2.4 Do Not Reuse Usernames
3.1 Ensure 'datadir' Has Appropriate Permissions
3.2 Ensure 'log_bin_basename' Files Have Appropriate Permissions
3.3 Ensure 'log_error' Has Appropriate Permissions
3.4 Ensure 'slow_query_log' Has Appropriate Permissions
3.5 Ensure 'relay_log_basename' Files Have Appropriate Permissions
3.6 Ensure 'general_log_file' Has Appropriate Permissions
3.7 Ensure SSL Key Files Have Appropriate Permissions
3.8 Ensure Plugin Directory Has Appropriate Permissions
4.5 Ensure 'mysqld' Is Not Started with '--skip-grant-tables' - %WINDIR%\my.cnf
4.5 Ensure 'mysqld' Is Not Started with '--skip-grant-tables' - %WINDIR%\my.ini
4.5 ensure 'mysqld' is not started with '--skip-grant-tables' - c:\my.cnf
4.5 ensure 'mysqld' is not started with '--skip-grant-tables' - c:\my.ini
4.5 ensure 'mysqld' is not started with '--skip-grant-tables' - c:\programdata\mysql\mysql server 5.7\my.cnf
4.5 ensure 'mysqld' is not started with '--skip-grant-tables' - c:\programdata\mysql\mysql server 5.7\my.ini exists
4.5 Ensure 'mysqld' Is Not Started with '--skip-grant-tables' - MYSQL_INSTALL\my.cnf
4.5 Ensure 'mysqld' Is Not Started with '--skip-grant-tables' - MYSQL_INSTALL\my.ini
6.5 Ensure 'log-raw' Is Set to 'OFF' - %WINDIR%\my.cnf
6.5 Ensure 'log-raw' Is Set to 'OFF' - %WINDIR%\my.ini
6.5 ensure 'log-raw' is set to 'off' - c:\my.cnf
6.5 ensure 'log-raw' is set to 'off' - c:\my.ini
6.5 ensure 'log-raw' is set to 'off' - c:\programdata\mysql\mysql server 5.7\my.cnf
6.5 ensure 'log-raw' is set to 'off' - c:\programdata\mysql\mysql server 5.7\my.ini exists
6.5 Ensure 'log-raw' Is Set to 'OFF' - MYSQL_INSTALL\my.cnf
6.5 Ensure 'log-raw' Is Set to 'OFF' - MYSQL_INSTALL\my.ini
7.1 Ensure Passwords Are Not Stored in the Global Configuration - %WINDIR%\my.cnf
7.1 Ensure Passwords Are Not Stored in the Global Configuration - %WINDIR%\my.ini
7.1 ensure passwords are not stored in the global configuration - c:\my.ini
7.1 ensure passwords are not stored in the global configuration - c:\programdata\mysql\mysql server 5.7\my.cnf
7.1 ensure passwords are not stored in the global configuration - c:\programdata\mysql\mysql server 5.7\my.ini
7.1 Ensure Passwords Are Not Stored in the Global Configuration - MYSQL_INSTALL\my.cnf
7.1 Ensure Passwords Are Not Stored in the Global Configuration - MYSQL_INSTALL\my.ini
7.1 ensure passwords are not stored in the global configuration -c:\my.ini
MySQL 5.7 Community Edition is installed