Security in MySQL  /  ...  /  Audit Log Plugin Security Considerations

5.11.2 Audit Log Plugin Security Considerations

Contents of the audit log file produced by the audit_log audit log plugin are not encrypted and may contain sensitive information, such as the text of SQL statements. For security reasons, this file should be written to a directory accessible only to the MySQL server and users with a legitimate reason to view the log. The default file is audit.log in the data directory. This can be changed by setting the audit_log_file system variable at server startup.

User Comments
Sign Up Login You must be logged in to post a comment.