DISA Oracle MySQL 8.0 v1r2 OS Linux

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA Oracle MySQL 8.0 v1r2 OS Linux

Updated: 4/12/2023

Authority: Operating Systems and Applications

Plugin: Unix

Revision: 1.4

Estimated Item Count: 25

Audit Items

DescriptionCategories
DISA_STIG_Oracle_MySQL_8.0_v1r2_OS_Linux.audit from DISA Oracle MySQL 8.0 v1r2 STIG
MYS8-00-000300 - MySQL Database Server 8.0 must produce audit records containing sufficient information to establish what type of events occurred - audit.log
MYS8-00-000300 - MySQL Database Server 8.0 must produce audit records containing sufficient information to establish what type of events occurred - data directory
MYS8-00-001200 - The audit information produced by the MySQL Database Server 8.0 must be protected from unauthorized read access - audit.log
MYS8-00-001200 - The audit information produced by the MySQL Database Server 8.0 must be protected from unauthorized read access - data directory
MYS8-00-001300 - The audit information produced by the MySQL Database Server 8.0 must be protected from unauthorized modification - audit.log
MYS8-00-001300 - The audit information produced by the MySQL Database Server 8.0 must be protected from unauthorized modification - data directory
MYS8-00-001400 - The audit information produced by the MySQL Database Server 8.0 must be protected from unauthorized deletion - audit.log
MYS8-00-001400 - The audit information produced by the MySQL Database Server 8.0 must be protected from unauthorized deletion - data directory
MYS8-00-001800 - The MySQL Database Server 8.0 must be able to generate audit records when privileges/permissions are retrieved.
MYS8-00-001900 - The MySQL Database Server 8.0 must be able to generate audit records when unsuccessful attempts to retrieve privileges/permissions occur.
MYS8-00-002000 - The MySQL Database Server 8.0 must be able to generate audit records when security objects are accessed.
MYS8-00-002100 - The MySQL Database Server 8.0 must generate audit records when unsuccessful attempts to access security objects occur.
MYS8-00-002200 - The MySQL Database Server 8.0 must generate audit records when categories of information (e.g., classification levels/security levels) are accessed.
MYS8-00-002300 - The MySQL Database Server 8.0 must generate audit records when unsuccessful attempts to access categories of information (e.g., classification levels/security levels) occur.
MYS8-00-002800 - The MySQL Database Server 8.0 must generate audit records when security objects are modified - audit_log
MYS8-00-002900 - The MySQL Database Server 8.0 must generate audit records when unsuccessful attempts to modify security objects occur.
MYS8-00-004800 - The MySQL Database Server 8.0 must enforce authorized access to all PKI private keys stored/utilized by the MySQL Database Server 8.0 - private pem files
MYS8-00-004800 - The MySQL Database Server 8.0 must enforce authorized access to all PKI private keys stored/utilized by the MySQL Database Server 8.0 - public pem files
MYS8-00-007800 - The MySQL Database Server 8.0 must initiate session auditing upon startup - audit-log
MYS8-00-007800 - The MySQL Database Server 8.0 must initiate session auditing upon startup - plugin-load-add
MYS8-00-009200 - The MySQL Database Server 8.0 must enforce access restrictions associated with changes to the configuration of the MySQL Database Server 8.0 or database(s) - auto.cnf
MYS8-00-009200 - The MySQL Database Server 8.0 must enforce access restrictions associated with changes to the configuration of the MySQL Database Server 8.0 or database(s) - my.cnf
MYS8-00-011500 - The MySQL Database Server 8.0 must use NSA-approved cryptography to protect classified information in accordance with the data owner's requirements - tls_ciphersuites TLSv1.3
MYS8-00-011900 - The MySQL Database Server 8.0 must only accept end entity certificates issued by DoD PKI or DoD-approved PKI Certification Authorities (CAs) for the establishment of all encrypted sessions.