Jordi Espasa Clofent wrote:
¿Is there any app like denyhosts[1] but intended for MySQLd service?
We have a mysql ports (3306) opened for remote connections, and
obviously the /var/db/mysql/machine_name.log is full of these kind of
entries:
...........
936012 Connect Access denied for user 'user'@'85.19.95.10' (using
password: YES)
936013 Connect Access denied for user 'user'@'85.19.95.10' (using
password: YES)
936014 Connect Access denied for user 'user'@'85.19.95.10' (using
password: YES)
936016 Connect Access denied for user 'user'@'85.19.95.10' (using
password: YES)
936018 Connect Access denied for user 'user'@'85.19.95.10' (using
password: YES)
936019 Connect Access denied for user 'user'@'85.19.95.10' (using
password: YES)
.............
The idea is blocking the abusive IPs in automated way.
[1] http://denyhosts.sourceforge.net/
How about ports/security/bruteblock?
No OOTB support, but adding it should be very easy.
(You just write a config file for it.)
--
Tuomo
... All I want is a warm bed, a kind word and unlimited power
_______________________________________________
[email protected] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
