1.6 Verify That 'MYSQL_PWD' Is Not Set In Users' Profiles - .bashrc

Information

MySQL can read a default database password from an environment variable called MYSQL_PWD.

Solution

Check which users and/or scripts are setting MYSQL_PWD and change them to use a more secure method.

See Also

https://workbench.cisecurity.org/files/1622

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(1)(c), CSCv6|16.13, CSCv6|16.14

Plugin: Unix

Control ID: 6098e0bfea8f1f947dc55d6e2353edcb429bea7302b606eb60243ce7e5d12642