Database Auditing

Database security and reliability are key factors to running secure web applications and to operating SQL databases in datacenters. Tenable Network Security has written many different audit policies that allow Nessus to audit both the configuration of the database as well as the underlying operating systems for a complete audit. These audits are available for many best practice standards including DISA STIG and the Center for Information Security.

Tenable Nessus supports database audits for the following SQL technologies:

• Microsoft SQL
• MySQL
• Oracle
• Postfix
• Sybase

In many cases, Tenable has also written operating system audit policies for Microsoft and Linux systems that are running databases. If you can write a SQL query, you can also easily extend our audit policies to create your own.