DISA Oracle MySQL 8.0 v1r2 OS Linux

Audit Details

Name: DISA Oracle MySQL 8.0 v1r2 OS Linux

Updated: 4/25/2022

Authority: DISA STIG

Plugin: Unix

Revision: 1.1

Estimated Item Count: 25

File Details

Filename: DISA_STIG_Oracle_MySQL_8.0_v1r2_OS_Linux.audit

Size: 65.4 kB

MD5: 7284e3c57ba870cf5e000fbba39a2f09
SHA256: d8b27f7a529e356037d40e12fad5befcbc335b9159974e19528acec59c61fe87

Audit Items

DescriptionCategories
DISA_STIG_Oracle_MySQL_8.0_v1r2_OS_Linux.audit from DISA Oracle MySQL 8.0 v1r2 STIG
MYS8-00-000300 - MySQL Database Server 8.0 must produce audit records containing sufficient information to establish what type of events occurred - audit.log

AUDIT AND ACCOUNTABILITY

MYS8-00-000300 - MySQL Database Server 8.0 must produce audit records containing sufficient information to establish what type of events occurred - data directory

AUDIT AND ACCOUNTABILITY

MYS8-00-001200 - The audit information produced by the MySQL Database Server 8.0 must be protected from unauthorized read access - audit.log

AUDIT AND ACCOUNTABILITY

MYS8-00-001200 - The audit information produced by the MySQL Database Server 8.0 must be protected from unauthorized read access - data directory

AUDIT AND ACCOUNTABILITY

MYS8-00-001300 - The audit information produced by the MySQL Database Server 8.0 must be protected from unauthorized modification - audit.log

AUDIT AND ACCOUNTABILITY

MYS8-00-001300 - The audit information produced by the MySQL Database Server 8.0 must be protected from unauthorized modification - data directory

AUDIT AND ACCOUNTABILITY

MYS8-00-001400 - The audit information produced by the MySQL Database Server 8.0 must be protected from unauthorized deletion - audit.log

AUDIT AND ACCOUNTABILITY

MYS8-00-001400 - The audit information produced by the MySQL Database Server 8.0 must be protected from unauthorized deletion - data directory

AUDIT AND ACCOUNTABILITY

MYS8-00-001800 - The MySQL Database Server 8.0 must be able to generate audit records when privileges/permissions are retrieved.

AUDIT AND ACCOUNTABILITY

MYS8-00-001900 - The MySQL Database Server 8.0 must be able to generate audit records when unsuccessful attempts to retrieve privileges/permissions occur.

AUDIT AND ACCOUNTABILITY

MYS8-00-002000 - The MySQL Database Server 8.0 must be able to generate audit records when security objects are accessed.

AUDIT AND ACCOUNTABILITY

MYS8-00-002100 - The MySQL Database Server 8.0 must generate audit records when unsuccessful attempts to access security objects occur.

AUDIT AND ACCOUNTABILITY

MYS8-00-002200 - The MySQL Database Server 8.0 must generate audit records when categories of information (e.g., classification levels/security levels) are accessed.

AUDIT AND ACCOUNTABILITY

MYS8-00-002300 - The MySQL Database Server 8.0 must generate audit records when unsuccessful attempts to access categories of information (e.g., classification levels/security levels) occur.

AUDIT AND ACCOUNTABILITY

MYS8-00-002800 - The MySQL Database Server 8.0 must generate audit records when security objects are modified - audit_log

AUDIT AND ACCOUNTABILITY

MYS8-00-002900 - The MySQL Database Server 8.0 must generate audit records when unsuccessful attempts to modify security objects occur.

AUDIT AND ACCOUNTABILITY

MYS8-00-004800 - The MySQL Database Server 8.0 must enforce authorized access to all PKI private keys stored/utilized by the MySQL Database Server 8.0 - private pem files

IDENTIFICATION AND AUTHENTICATION

MYS8-00-004800 - The MySQL Database Server 8.0 must enforce authorized access to all PKI private keys stored/utilized by the MySQL Database Server 8.0 - public pem files

IDENTIFICATION AND AUTHENTICATION

MYS8-00-007800 - The MySQL Database Server 8.0 must initiate session auditing upon startup - audit-log

AUDIT AND ACCOUNTABILITY

MYS8-00-007800 - The MySQL Database Server 8.0 must initiate session auditing upon startup - plugin-load-add

AUDIT AND ACCOUNTABILITY

MYS8-00-009200 - The MySQL Database Server 8.0 must enforce access restrictions associated with changes to the configuration of the MySQL Database Server 8.0 or database(s) - auto.cnf

CONFIGURATION MANAGEMENT

MYS8-00-009200 - The MySQL Database Server 8.0 must enforce access restrictions associated with changes to the configuration of the MySQL Database Server 8.0 or database(s) - my.cnf

CONFIGURATION MANAGEMENT

MYS8-00-011500 - The MySQL Database Server 8.0 must use NSA-approved cryptography to protect classified information in accordance with the data owner's requirements - tls_ciphersuites TLSv1.3

SYSTEM AND COMMUNICATIONS PROTECTION

MYS8-00-011900 - The MySQL Database Server 8.0 must only accept end entity certificates issued by DoD PKI or DoD-approved PKI Certification Authorities (CAs) for the establishment of all encrypted sessions.

SYSTEM AND COMMUNICATIONS PROTECTION