[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] MySql Password Auditor v1.0 Released

On 05/25/2011 12:57 AM, Tracy Reed wrote:
> If anyone wanted to write a real tool for auditing mysql they would look at
> query logs and generate a list of least-privilege permissions each user needs
> and identify database users with overly broad permissions based on past usage.
> Anyone know if such a tool exists?

Imperva's DB firewalls ($$$) do that.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/