Skip to content

Access Control: Exposed MySQL Server

Identifier: mysql_exposed

Scanner(s) Support

GraphQL Scanner REST Scanner WebApp Scanner

Description

Check if the MySQL server is exposed to the public.

Exposed MySQL servers should be configured to only allow connections from trusted IP addresses or networks to prevent unauthorized access.

Configuration

Example

Example configuration:

---
security_tests:
  mysql_exposed:
    assets_allowed:
    - REST
    - GRAPHQL
    - WEBAPP
    skip: false

Reference

assets_allowed

Type : List[AssetType]*

List of assets that this check will cover.

skip

Type : boolean

Skip the test if true.