bejbi

Well-Known Member
PartnerNOC
Jan 20, 2006
136
22
168
Poland
cPanel Access Level
DataCenter Provider
On one of my server someone account have been broken.

In about 3minutes I have in my MySQL logs errors in connection to database using user "root".
All connection are from localhost. But in MySQL log I can't see which user (account) is trying to connect do mySQL server as "root"
I about 3 minutes I had over 800 000 connection do MySQL - all of them was failed.

But this failed connection made the DoS on my MySQL server ... becouse of number of connections

Question:

If I will limit number of connection per LVE/account - is DBGovernor limiting real user account or only "login" or "prefix" of MySQL user ?
If I enable such limit in DBGovernor is it possible to truncate such attack like I write above ?

WB
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,202
363
The documentation for MySQL Governor is available at:

CloudLinux Documentation

It looks to associate databases with the cPanel account based on the existing database mapping that cPanel uses. I'm not sure it's designed to prevent attacks on the MySQL service. You may find more information or support DB Governor itself directly on the Cloud Linux forums:

Cloud Linux Forum

Thank you.