Re: [Full-disclosure] MySql Password Auditor v1.0 Released

[Charles Skoglund <charles.skoglund@xxxxxxxxx>]

On 5/26/11 11:12 PM, "PEra" <lists@xxxxxxxxxxxxxxx> wrote:
> On 05/25/2011 12:57 AM, Tracy Reed wrote:
>> If anyone wanted to write a real tool for auditing mysql they would look at
>> query logs and generate a list of least-privilege permissions each user needs
>> and identify database users with overly broad permissions based on past
>> usage.
>> Anyone know if such a tool exists?
> 
> Imperva's DB firewalls ($$$) do that.

GreenSQL might do it as well.


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/