On one of my server someone account have been broken.
In about 3minutes I have in my MySQL logs errors in connection to database using user "root".
All connection are from localhost. But in MySQL log I can't see which user (account) is trying to connect do mySQL server as "root"
I about 3 minutes I had over 800 000 connection do MySQL - all of them was failed.
But this failed connection made the DoS on my MySQL server ... becouse of number of connections
Question:
If I will limit number of connection per LVE/account - is DBGovernor limiting real user account or only "login" or "prefix" of MySQL user ?
If I enable such limit in DBGovernor is it possible to truncate such attack like I write above ?
WB
In about 3minutes I have in my MySQL logs errors in connection to database using user "root".
All connection are from localhost. But in MySQL log I can't see which user (account) is trying to connect do mySQL server as "root"
I about 3 minutes I had over 800 000 connection do MySQL - all of them was failed.
But this failed connection made the DoS on my MySQL server ... becouse of number of connections
Question:
If I will limit number of connection per LVE/account - is DBGovernor limiting real user account or only "login" or "prefix" of MySQL user ?
If I enable such limit in DBGovernor is it possible to truncate such attack like I write above ?
WB
