STIGQter: STIG Summary: Oracle MySQL 8.0 Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 28 Jan 2021:

The MySQL Database Server 8.0 must provide a warning to appropriate support staff when allocated audit record storage volume reaches 75 percent of maximum audit record storage capacity.

DISA Rule

SV-235175r638812_rule

Vulnerability Number

V-235175

Group Title

SRG-APP-000359-DB-000319

Rule Version

MYS8-00-009800

Severity

CAT II

CCI(s)

CCI-001855 - The information system provides a warning to organization-defined personnel, roles, and/or locations within an organization-defined time period when allocated audit record storage volume reaches an organization-defined percentage of repository maximum audit record storage capacity.

Weight

Fix Recommendation

Modify OS, or third-party logging application settings to alert appropriate personnel when 75 percent of audit log storage capacity is reached.

Check Contents

Review OS, or third-party logging application settings to determine whether a warning will be provided when 75 percent of DBMS audit log storage capacity is reached.

If no warning will be provided, this is a finding.

Vulnerability Number

V-235175

Documentable

False

Rule Version

MYS8-00-009800

Severity Override Guidance

Check Content Reference

Target Key

5277

The MySQL Database Server 8.0 must provide a warning to appropriate support staff when allocated audit record storage volume reaches 75 percent of maximum audit record storage capacity.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments