MySQL 伪审计实现

阅读量：390 次

发布时间：2019-03-05

本文共 1125 字，大约阅读时间需要 3 分钟。

MySQL????????

1. ????

??????MySQL?????????????????????????????????????IP?????????????

2. ????

MySQL?????????????????????????????????????????????????????????????????????????????????

3. ????

??MySQL?init_connect?????????????????SQL???????????????

3.1 ????

init_connect ??????????????????SQL????????SQL????????????

???????????SUPER??????init_connect??????????????????????

???????MySQL 5.7.22????????init_connect??????????????????????????????????????????

3.2 ????

??????

CREATE TABLE `db_audit` (    `id` INT PRIMARY KEY AUTO_INCREMENT,    `username` VARCHAR(50) NOT NULL,    `login_time` DATETIME NOT NULL,    `table_name` VARCHAR(50) NOT NULL,    `operation_type` VARCHAR(50) NOT NULL,    `ip_address` VARCHAR(50) NOT NULL) ENGINE=InnoDB DEFAULT CHARSET=utf8;

????????????MySQL????????????

[client]init_connect = 'REPLACE INTO `db_audit` (username, login_time, table_name, operation_type, ip_address) VALUES (%s, %s, %s, %s, %s)'

????????????????????????SUPER???????????

??Binlog???????Binlog???????????thread_id???????

4. ??

??init_connect?Binlog??????????????????????????????????????Binlog????????????????????????????????????

转载地址：http://purwz.baihongyu.com/

你可能感兴趣的文章

SpringBoot中集成Actuator实现监控系统运行状态

查看>>

paddle的两阶段基础算法基础

查看>>

Page Object模式：为什么它是Web自动化测试的必备工具

查看>>

SpringBoot中重写addCorsMapping解决跨域以及提示list them explicitly or consider using “allowedOriginPatterns“ in

PageOffice如何实现从零开始动态生成图文并茂的Word文档

paip.android 手机输入法制造大法

查看>>

paip.spring3 mvc servlet的配置以及使用最佳实践

查看>>

Palindrome Number leetcode java

查看>>

Palo Alto Networks Expedition 未授权SQL注入漏洞复现(CVE-2024-9465)

查看>>

Palo Alto Networks PAN-OS身份认证绕过导致RCE漏洞复现(CVE-2024-0012)

查看>>

Panalog 日志审计系统 libres_syn_delete.php 前台RCE漏洞复现

查看>>