fixes

src/pentesting-cloud/azure-security/az-services/az-mysql.md

@@ -15,11 +15,17 @@ Azure Database for MySQL is a fully managed relational database service based on
  - Features elastic scaling, patch management, and workload optimization.
  - Offers stop/start functionality for cost savings.
 
-### Key Features
-* **Server Management**: The **ad-admin** feature allows managing Azure Entra ID administrators for MySQL servers, providing control over administrative access via Entra ID credentials. Mysql supports User Managed Identities, used to autenticate without the need of credentials, and can be used by other services.
-* **Lifecycle Management**: options to start or stop a server, delete a flexible server instance, restart a server to quickly apply configuration changes, and wait to ensure a server meets specific conditions before proceeding with automation scripts.
-* **Security and Networking**: Secure your server by restricting connections through firewall rules that only allow specific public IP addresses, or by using private endpoints that integrate your server into a virtual network. All connections are protected with TLS 1.2 encryption. Databases, backups, and logs are encrypted at rest by default using service-managed keys or custom keys. 
-* **Data Protection and Backup**: includes options to manage flexible server backups for data recovery, perform geo-restore to recover a server in a different region, export server backups for external use (in Preview), and restore a server from backup to a specific point in time.
+### Security Features
+
+**The options are very similar to an Azure SQL Server.**
+
+* **Authentication**: It’s possible to configure the authentication as MySQL auth only, Entra ID auth only or both MySQL and Entra ID auth. 
+  * If MySQL auth is enabled it’ll be possible to login with username + password
+  * If Entrad ID is configured the MySQL requires a user-assigned MI with enough permissions mentioned **[here](https://learn.microsoft.com/en-us/azure/mysql/flexible-server/how-to-azure-ad#configure-the-microsoft-entra-admin)** and an Entra ID principal must be selected as admin.
+* **Networking**: It’s possible to allow public access indicating allowed IP addresses and private endpoints can also be used. Moreover it’s possible to allow access from any Azure service and configure more firewall rules.
+* **Encryption**: All connections are protected with TLS 1.2 encryption. Databases, backups, and logs are encrypted at rest by default using service-managed keys but custom keys could also be used.
+* **Data Protection and Backup**: Includes options to manage flexible server backups for data recover, and restore a server from backup to a specific point in time.
+
 
 ### Enumeration
 
@@ -27,7 +33,7 @@ Azure Database for MySQL is a fully managed relational database service based on
 {{#tab name="az cli" }}
 ```bash
 # List all flexible-servers
-az mysql flexible-server db list --resource-group <resource-group-name>
+az mysql flexible-server list --resource-group <resource-group-name>
 # List databases in a flexible-server
 az mysql flexible-server db list --resource-group <resource-group-name> --server-name <server_name>
 # Show specific details of a MySQL database

src/pentesting-cloud/azure-security/az-services/az-queue.md

@@ -83,7 +83,7 @@ $queueMessage.Value
 ### Persistence
 
 {{#ref}}
-../az-persistence/az-queue-persistance.md
+../az-persistence/az-queue-persistence.md
 {{#endref}}
 
 ## References

src/pentesting-cloud/azure-security/az-services/az-sql.md

@@ -343,7 +343,7 @@ sqlcmd -S <sql-server>.database.windows.net -U <server-user> -P <server-passwork
 ### Persistence
 
 {{#ref}}
-../az-persistence/az-sql-persistance.md
+../az-persistence/az-sql-persistence.md
 {{#endref}}
 
 {{#include ../../../banners/hacktricks-training.md}}