DBMS-auditing data files

Certain scripts related to DBMS use data files to store common, related strings and fingerprints to perform security audits. If you normally work with Oracle environments, I highly recommend updates to the following files.

mysql-cis.audit

The mysql-cis.audit file inside your Nmap data directory contains configuration checks described in the CIS MySQL v1.0.2 benchmark. It is used by the mysql-audit script to perform configuration checks by carrying out a series of tests. A test looks like this:

-- Logging
test { id="3.1", desc="Skip symbolic links", sql="SHOW variables WHERE Variable_name = 'log_error' AND Value IS NOT NULL", check=function(rowstab) 
  return { status = not(isEmpty(rowstab[1])) }
end
}

You may set the mysql-audit ...

Get Mastering the Nmap Scripting Engine now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Mastering the Nmap Scripting Engine by Paulino Calderón Pale

DBMS-auditing data files

mysql-cis.audit

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly