[TOC]
概述
- mysql5.7.32增加审计日志功能,记录数据库的操作
获取审计功能插件
- 下载5.5.68-MariaDB
插件路径:
/usr/lib64/mysql/plugin/server_audit.so
配置mysql5.7.32
1、获取mysql插件路径
mysql> show global variables like '%plugin_dir%';
+---------------+--------------------------+
| Variable_name | Value |
+---------------+--------------------------+
| plugin_dir | /usr/lib64/mysql/plugin/ |
+---------------+--------------------------+
1 row in set (0.01 sec)2、分发插件
# 将插件放置此目录
$ cd /usr/lib64/mysql/plugin/
$ ll server_audit.so3、安装插件
INSTALL PLUGIN server_audit SONAME 'server_audit.so';4、查看变量开启情况,默认都是关闭
mysql> show variables like '%audit%';5、配置开启
$ vim /etc/my.cnf
# 新增以下配置
server_audit_logging=on
server_audit_file_path =/hdata/mysql_data/log/server_audit.log
server_audit_file_rotate_size=10000000
server_audit=FORCE_PLUS_PERMANEN6、重启mysql
$ systemctl restart mysqld7、查看配置情况
mysql> show variables like '%audit%';
+-------------------------------+----------------------------------------+
| Variable_name | Value |
+-------------------------------+----------------------------------------+
| server_audit_events | |
| server_audit_excl_users | |
| server_audit_file_path | /hdata/mysql_data/log/server_audit.log |
| server_audit_file_rotate_now | OFF |
| server_audit_file_rotate_size | 10000000 |
| server_audit_file_rotations | 9 |
| server_audit_incl_users | |
| server_audit_loc_info | |
| server_audit_logging | ON |
| server_audit_mode | 1 |
| server_audit_output_type | file |
| server_audit_query_log_limit | 1024 |
| server_audit_syslog_facility | LOG_USER |
| server_audit_syslog_ident | mysql-server_auditing |
| server_audit_syslog_info | |
| server_audit_syslog_priority | LOG_INFO |
+-------------------------------+----------------------------------------+
16 rows in set (0.00 sec)