Details
-
Task
-
Status: Open (View Workflow)
-
Major
-
Resolution: Unresolved
-
None
-
None
Description
This is a feature request for being able to distinguish between application and human use if a MariaDB user account can be used by both an application setup, and directly by a human using the mysql command line client.
A user may interested in only auditing manual human interaction while ignoring the automatic application use.
There are two different approaches by which a human use may be detected:
- by checking for the CLIENT_INTERACTIVE flag of the connection being set
- by checking to what value the "progname" attribute of the connection is being set to
E.g.:
server_audit_incl_attr=progname:mysql
or
server_audit_excl_attr=progname:myapplication
or even as simple as
server_audit_interactive_only=yes