3.5 Ensure 'relay_log_basename' Files Have Appropriate Permissions

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

MySQL can operate using a variety of log files, each used for different purposes. These are the binary log, error log, slow query log, relay log, and general log. Because these are files on the host operating system, they are subject to the permissions structure provided by the host and may be accessible by users other than the MySQL user.

Solution

Execute the following command for each log file location requiring corrected permissions:
chmod 660 <log file>
chown mysql:mysql <log file>

See Also

https://workbench.cisecurity.org/files/1617