Bug #83164 MySQL Enterprise Audit does not log to syslog
Submitted: 27 Sep 2016 9:18 Modified: 5 Oct 2016 7:12
Reporter: Oli Sennhauser Email Updates:
Status: Verified Impact on me:
None 
Category:MySQL Server: Security: Audit Severity:S4 (Feature request)
Version:5.7 OS:Any
Assigned to: CPU Architecture:Any
Tags: audit

[27 Sep 2016 9:18] Oli Sennhauser 
Description:
MySQL Enterprise Audit does not log to syslog according to documentation.

How to repeat:
https://dev.mysql.com/doc/refman/5.7/en/audit-log.html

Actually we have to ship the autit.log manually to syslog for further processing. This is nasty. I expect from Enterprise Audit Plugin at least that log output is possible to a syslog facility.

Further this give the possibility for admin to hide some nasty actions.

Suggested fix:
Some other implementations are available with this functionality:

Percona Server
https://www.percona.com/doc/perconaserver/5.5/management/audit_log_plugin.html

MySQL Syslog Audit Plugin
https://blogs.oracle.com/DatabaseEmporium/entry/mysql_syslog_audit_plugin
[5 Oct 2016 7:12] MySQL Verification Team 
Hello Oli,

Thank you for the feature request!

Thanks,
Umesh
[24 May 2017 21:07] Damon Grube 
We also have the need for centralized security audit.  All the oracle database have sys audit going to syslog.  We have the same need for MySQL, for the Audit Log to be pushed to syslog for centralized auditing.