[fbsd] denyhosts-like app for MySQLd?
Jeremie Le Hen
jeremie at le-hen.org
Mon Jan 21 19:33:44 PST 2008
Hi,
On Mon, Jan 21, 2008 at 10:50:11AM +0100, Jordi Espasa Clofent wrote:
> We have a mysql ports (3306) opened for remote connections, and obviously
> the /var/db/mysql/machine_name.log is full of these kind of entries:
>
> ...........
> 936012 Connect Access denied for user 'user'@'85.19.95.10' (using
> password: YES)
> 936013 Connect Access denied for user 'user'@'85.19.95.10' (using
> password: YES)
> 936014 Connect Access denied for user 'user'@'85.19.95.10' (using
> password: YES)
> 936016 Connect Access denied for user 'user'@'85.19.95.10' (using
> password: YES)
> 936018 Connect Access denied for user 'user'@'85.19.95.10' (using
> password: YES)
> 936019 Connect Access denied for user 'user'@'85.19.95.10' (using
> password: YES)
> .............
>
> The idea is blocking the abusive IPs in automated way.
>
> [1] http://denyhosts.sourceforge.net/
You may have a look at Fail2Ban:
http://www.fail2ban.org/wiki/index.php/Features
--
Jeremie Le Hen
< jeremie at le-hen dot org >< ttz at chchile dot org >
More information about the freebsd-security
mailing list