Data protection

MySQL flexible server TLS version is not set to the default – v1.2

Risk Level

Hazardous (3)

Platform(s)
Compliance Frameworks

Description

the TLS version for {AzureMySqlFlexibleServer} server, is not configured to v1.2. TLS connectivity helps to provide a new layer of security, by connecting database server to client applications using Transport Layer Security (TLS). Enforcing TLS connections between database server and client applications helps protect against 'man in the middle' attacks by encrypting the data stream between the server and application.

  • Recommended Mitigation

    Ensure TLS version on MySQL flexible servers is set to the default value - TLSV1.2.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.