Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: MySql Password Auditor v1.0 Released

From: Charles Skoglund <charles.skoglund () bitsec se>
Date: Fri, 27 May 2011 11:10:01 +0200
On 5/26/11 11:12 PM, "PEra" <lists () sevenlayers org> wrote:

On 05/25/2011 12:57 AM, Tracy Reed wrote:

If anyone wanted to write a real tool for auditing mysql they would look at
query logs and generate a list of least-privilege permissions each user needs
and identify database users with overly broad permissions based on past
usage.
Anyone know if such a tool exists?


Imperva's DB firewalls ($$$) do that.


GreenSQL might do it as well.


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: