The log-raw MySQL option determines whether passwords are rewritten by the server so as not to appear in log files as plain text. If log-raw is enabled, then passwords are written to the various log files (general query log, slow query log, and binary log) in plain text. NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Solution
Perform the following actions to remediate this setting: - Open the MySQL configuration file (my.cnf) - Find the log-raw entry and set it as follows log-raw = OFF