PDF (A4) - 40.9Mb
Man Pages (TGZ) - 261.1Kb
Man Pages (Zip) - 368.3Kb
Info (Gzip) - 4.1Mb
Info (Zip) - 4.1Mb
MySQL Server includes a plugin library that enables administrators to introduce an increasing delay in server response to connection attempts after a configurable number of consecutive failed attempts. This capability provides a deterrent that slows down brute force attacks against MySQL user accounts. The plugin library contains two plugins:
CONNECTION_CONTROLchecks incoming connection attempts and adds a delay to server responses as necessary. This plugin also exposes system variables that enable its operation to be configured and a status variable that provides rudimentary monitoring information.The
CONNECTION_CONTROLplugin uses the audit plugin interface (seeWriting Audit Plugins). To collect information, it subscribes to theMYSQL_AUDIT_CONNECTION_CLASSMASKevent class, and processesMYSQL_AUDIT_CONNECTION_CONNECTandMYSQL_AUDIT_CONNECTION_CHANGE_USERsubevents to check whether the server should introduce a delay before responding to connection attempts.CONNECTION_CONTROL_FAILED_LOGIN_ATTEMPTSimplements anINFORMATION_SCHEMAtable that exposes more detailed monitoring information for failed connection attempts. For more information about this table, seeSection 28.6.2, “The INFORMATION_SCHEMA CONNECTION_CONTROL_FAILED_LOGIN_ATTEMPTS Table”.
The following sections provide information about connection control plugin installation and configuration.
PDF (A4) - 40.9Mb
Man Pages (TGZ) - 261.1Kb
Man Pages (Zip) - 368.3Kb
Info (Gzip) - 4.1Mb
Info (Zip) - 4.1Mb