Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-15428

Allow to filter audit events by "progname"; or even by arbitrary connection attribute, in addition to user name

    XMLWordPrintable

Details

    • Task
    • Status: Open (View Workflow)
    • Major
    • Resolution: Unresolved
    • None
    • Plugin - Audit
    • None

    Description

      This is a feature request for being able to distinguish between application and human use if a MariaDB user account can be used by both an application setup, and directly by a human using the mysql command line client.

      A user may interested in only auditing manual human interaction while ignoring the automatic application use.

      There are two different approaches by which a human use may be detected:

      • by checking for the CLIENT_INTERACTIVE flag of the connection being set
      • by checking to what value the "progname" attribute of the connection is being set to

      E.g.:

      server_audit_incl_attr=progname:mysql

      or

      server_audit_excl_attr=progname:myapplication

      or even as simple as

      server_audit_interactive_only=yes

      Attachments

        Activity

          People

            Unassigned Unassigned
            hholzgra Hartmut Holzgraefe
            Votes:
            1 Vote for this issue
            Watchers:
            4 Start watching this issue

            Dates

              Created:
              Updated:

              Git Integration

                Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.