MySQL :: MySQL 9.6 Reference Manual :: 8.4.6.3 MySQL Enterprise Audit Plugin (Deprecated) Security Considerations

Documentation Home

PDF (US Ltr) - 41.8Mb
PDF (A4) - 41.9Mb
Man Pages (TGZ) - 272.3Kb
Man Pages (Zip) - 378.1Kb
Info (Gzip) - 4.2Mb
Info (Zip) - 4.2Mb

version 9.6

9.5
9.4
9.3
9.2
9.1
9.0
8.4 current
8.0
5.7

8.0 Japanese

MySQL 9.6 Reference Manual / ... / MySQL Enterprise Audit Plugin (Deprecated) Security Considerations

8.4.6.3 MySQL Enterprise Audit Plugin (Deprecated) Security Considerations

Important

The audit_log plugin is deprecated, and is being replaced by the audit_log component. Deprecation of the plugin means that you should expect the plugin to be removed in a future version of MySQL. For more information about the audit log component, see Section 8.4.7, “MySQL Enterprise Audit Component”.

By default, contents of audit log files produced by the audit log plugin are not encrypted and may contain sensitive information, such as the text of SQL statements. For security reasons, audit log files should be written to a directory accessible only to the MySQL server and to users with a legitimate reason to view the log. The default file name is audit.log in the data directory. This can be changed by setting the audit_log_file system variable at server startup. Other audit log files may exist due to log rotation.

For additional security, enable audit log file encryption. See Encrypting Audit Log Files.

PREV HOME UP NEXT

PDF (US Ltr) - 41.8Mb
PDF (A4) - 41.9Mb
Man Pages (TGZ) - 272.3Kb
Man Pages (Zip) - 378.1Kb
Info (Gzip) - 4.2Mb
Info (Zip) - 4.2Mb