Security Question
am 03.10.2005 18:56:00 von bullijr------=_NextPart_000_001F_01C5C819.CD94DD30
Content-Type: multipart/alternative;
boundary="----=_NextPart_001_0020_01C5C819.CD94DD30"
------=_NextPart_001_0020_01C5C819.CD94DD30
Content-Type: text/plain;
charset="US-ASCII"
Content-Transfer-Encoding: 7bit
Hi All --
I have been a member of this list for a while but I actually have a question
that I can't answer.
MySQL v4.1.14-nt on Win2k3 Server
I've got someone who is trying to get in, but I have locked it down. Methods
used include, but are not limited to:
No Outside Root Access
System DSNs for Web connectivity
Strong Passwords for each user
User Permissions different for each purpose
Here's the question -- It's a DoS attack and it's locking up the system for
other users (max_connections_allowed).
Anything I can do extra via MySQL that will keep this person away, or
perhaps free up the server? I would rather not increase the max_conn_allowed
var as it's already at 800 (more than I need).
Do not have access to the Router (I wish I did, ACLs are such a great
thing), but have full Admin rights to the server.
Thanks everyone!
J.R.
------=_NextPart_001_0020_01C5C819.CD94DD30
Content-Type: text/html;
charset="US-ASCII"
Content-Transfer-Encoding: quoted-printable
charset=3Dus-ascii">
6.5.7036.0">
Hi All --
I have been a member of this list for =
a while but I actually have a question that I can't answer.
MySQL v4.1.14-nt on Win2k3 =
Server
I've got someone who is trying to get =
in, but I have locked it down. Methods used include, but are not limited =
to:
No Outside Root Access
System DSNs for Web =
connectivity
Strong Passwords for each =
user
User Permissions different for each =
purpose
Here's the question -- It's a DoS =
attack and it's locking up the system for other users =
(max_connections_allowed).
Anything I can do extra via MySQL =
that will keep this person away, or perhaps free up the server? I would =
rather not increase the max_conn_allowed var as it's already at 800 =
(more than I need).
Do not have access to the Router (I =
wish I did, ACLs are such a great thing), but have full Admin rights to =
the server.
Thanks everyone!
J.R.
------=_NextPart_001_0020_01C5C819.CD94DD30--
------=_NextPart_000_001F_01C5C819.CD94DD30
Content-Type: application/x-pkcs7-signature;
name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment;
filename="smime.p7s"
MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEH AQAAoIIIyzCCAlMw
ggG8oAMCAQICAw2wbDANBgkqhkiG9w0BAQQFADBiMQswCQYDVQQGEwJaQTEl MCMGA1UEChMcVGhh
d3RlIENvbnN1bHRpbmcgKFB0eSkgTHRkLjEsMCoGA1UEAxMjVGhhd3RlIFBl cnNvbmFsIEZyZWVt
YWlsIElzc3VpbmcgQ0EwHhcNMDQxMjI1MDU1MDI3WhcNMDUxMjI1MDU1MDI3 WjBHMR8wHQYDVQQD
ExZUaGF3dGUgRnJlZW1haWwgTWVtYmVyMSQwIgYJKoZIhvcNAQkBFhVidWxs aWpyQGlubm92YXRp
bS5jb20wgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAMq8xll8x9DXRaF4 Jb1JrfXT2+/AbYgl
/EbzRxjgWlkoNGax5RvXNQP8v6glF5XkYPIhtVz2YekUGPxysrTCga+jCWej JGIG8FU9VWK8LFWr
KDEpuKKyptu13AyJlFoFBAXUVz29R5ebNAerI2PhlJpUBdyaL0nCwdf3i719 sEYlAgMBAAGjMjAw
MCAGA1UdEQQZMBeBFWJ1bGxpanJAaW5ub3ZhdGltLmNvbTAMBgNVHRMBAf8E AjAAMA0GCSqGSIb3
DQEBBAUAA4GBAIPvkbSmB9MC9npZ2X4uE22c6y/7wwk551mGOgy+zY5eNivS i65WK7AuUnbgk/az
pDLMYQIwvaNE4y/tIXM5DrLCejaBBPxfVzbM2nwV81DnUbE8HVrBLpMv9AkT UcFrs0GNGb8rfdom
JFZSPorna4hIKV4HhxyYo8o6VnuZqkfdMIIDLTCCApagAwIBAgIBADANBgkq hkiG9w0BAQQFADCB
0TELMAkGA1UEBhMCWkExFTATBgNVBAgTDFdlc3Rlcm4gQ2FwZTESMBAGA1UE BxMJQ2FwZSBUb3du
MRowGAYDVQQKExFUaGF3dGUgQ29uc3VsdGluZzEoMCYGA1UECxMfQ2VydGlm aWNhdGlvbiBTZXJ2
aWNlcyBEaXZpc2lvbjEkMCIGA1UEAxMbVGhhd3RlIFBlcnNvbmFsIEZyZWVt YWlsIENBMSswKQYJ
KoZIhvcNAQkBFhxwZXJzb25hbC1mcmVlbWFpbEB0aGF3dGUuY29tMB4XDTk2 MDEwMTAwMDAwMFoX
DTIwMTIzMTIzNTk1OVowgdExCzAJBgNVBAYTAlpBMRUwEwYDVQQIEwxXZXN0 ZXJuIENhcGUxEjAQ
BgNVBAcTCUNhcGUgVG93bjEaMBgGA1UEChMRVGhhd3RlIENvbnN1bHRpbmcx KDAmBgNVBAsTH0Nl
cnRpZmljYXRpb24gU2VydmljZXMgRGl2aXNpb24xJDAiBgNVBAMTG1RoYXd0 ZSBQZXJzb25hbCBG
cmVlbWFpbCBDQTErMCkGCSqGSIb3DQEJARYccGVyc29uYWwtZnJlZW1haWxA dGhhd3RlLmNvbTCB
nzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA1GnX1LCUZFtx6UfYDFG26nKR sIRefS0Nj3sS34Ul
dSh0OkIsYyeflXtL734Zhx2G6qPduc6WZBrCFG5ErHzmj+hND3EfQDimAKOH ePb5lIZererAXnbr
2RSjXW56fAylS1V/Bhkpf56aJtVquzgkCGqYx7Hao5iR/Xnb5VrEHLkCAwEA AaMTMBEwDwYDVR0T
AQH/BAUwAwEB/zANBgkqhkiG9w0BAQQFAAOBgQDH7JJ+Tvj1lqVnYiqk8E0R YNBvjWBYYawmu1I1
XAjPMPuoSpaKH2JCI4wXD/S6ZJwXrEcp352YXtJsYHFcoqzceePnbgBHH7UN KOgCneSa/RP0ptl8
sfjcXyMmCZGAc9AUG95DqYMl8uacLxXK/qarigd1iwzdUYRr5PjRzneigTCC Az8wggKooAMCAQIC
AQ0wDQYJKoZIhvcNAQEFBQAwgdExCzAJBgNVBAYTAlpBMRUwEwYDVQQIEwxX ZXN0ZXJuIENhcGUx
EjAQBgNVBAcTCUNhcGUgVG93bjEaMBgGA1UEChMRVGhhd3RlIENvbnN1bHRp bmcxKDAmBgNVBAsT
H0NlcnRpZmljYXRpb24gU2VydmljZXMgRGl2aXNpb24xJDAiBgNVBAMTG1Ro YXd0ZSBQZXJzb25h
bCBGcmVlbWFpbCBDQTErMCkGCSqGSIb3DQEJARYccGVyc29uYWwtZnJlZW1h aWxAdGhhd3RlLmNv
bTAeFw0wMzA3MTcwMDAwMDBaFw0xMzA3MTYyMzU5NTlaMGIxCzAJBgNVBAYT AlpBMSUwIwYDVQQK
ExxUaGF3dGUgQ29uc3VsdGluZyAoUHR5KSBMdGQuMSwwKgYDVQQDEyNUaGF3 dGUgUGVyc29uYWwg
RnJlZW1haWwgSXNzdWluZyBDQTCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkC gYEAxKY8VXNV+065
yplaHmjAdQRwnd/p/6Me7L3N9VvyGna9fww6YfK/Uc4B1OVQCjDXAmNaLIkV cI7dyfArhVqqP3FW
y688Cwfn8R+RNiQqE88r1fOCdz0Dviv+uxg+B79AgAJk16emu59l0cUqVIUP SAR/p7bRPGEEQB5k
GXJgt/sCAwEAAaOBlDCBkTASBgNVHRMBAf8ECDAGAQH/AgEAMEMGA1UdHwQ8 MDowOKA2oDSGMmh0
dHA6Ly9jcmwudGhhd3RlLmNvbS9UaGF3dGVQZXJzb25hbEZyZWVtYWlsQ0Eu Y3JsMAsGA1UdDwQE
AwIBBjApBgNVHREEIjAgpB4wHDEaMBgGA1UEAxMRUHJpdmF0ZUxhYmVsMi0x MzgwDQYJKoZIhvcN
AQEFBQADgYEASIzRUIPqCy7MDaNmrGcPf6+svsIXoUOWlJ1/TCG4+DYfqi2f Ni/A9BxQIJNwPP2t
4WFiw9k6GX6EsZkbAMUaC4J0niVQlGLH2ydxVyWN3amcOY6MIE9lX5Xa9/eH 1sYITq726jTlEBpb
NU1341YheILcIRk13iSx0x1G/11fZU8xggLPMIICywIBATBpMGIxCzAJBgNV BAYTAlpBMSUwIwYD
VQQKExxUaGF3dGUgQ29uc3VsdGluZyAoUHR5KSBMdGQuMSwwKgYDVQQDEyNU aGF3dGUgUGVyc29u
YWwgRnJlZW1haWwgSXNzdWluZyBDQQIDDbBsMAkGBSsOAwIaBQCgggG8MBgG CSqGSIb3DQEJAzEL
BgkqhkiG9w0BBwEwHAYJKoZIhvcNAQkFMQ8XDTA1MTAwMzE2NTU1OVowIwYJ KoZIhvcNAQkEMRYE
FFtolEdg0BD7kC/6JPLv3X1+jJ7fMGcGCSqGSIb3DQEJDzFaMFgwCgYIKoZI hvcNAwcwDgYIKoZI
hvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAcGBSsOAwIHMA0GCCqGSIb3DQMC AgEoMAcGBSsOAwIa
MAoGCCqGSIb3DQIFMHgGCSsGAQQBgjcQBDFrMGkwYjELMAkGA1UEBhMCWkEx JTAjBgNVBAoTHFRo
YXd0ZSBDb25zdWx0aW5nIChQdHkpIEx0ZC4xLDAqBgNVBAMTI1RoYXd0ZSBQ ZXJzb25hbCBGcmVl
bWFpbCBJc3N1aW5nIENBAgMNsGwwegYLKoZIhvcNAQkQAgsxa6BpMGIxCzAJ BgNVBAYTAlpBMSUw
IwYDVQQKExxUaGF3dGUgQ29uc3VsdGluZyAoUHR5KSBMdGQuMSwwKgYDVQQD EyNUaGF3dGUgUGVy
c29uYWwgRnJlZW1haWwgSXNzdWluZyBDQQIDDbBsMA0GCSqGSIb3DQEBAQUA BIGAt0c/+Z2sPOYX
gdaizEmnKk3hFqXPUU0Vme9uLidKY6amCRtxRyVRWhx/uqr4gwgvjk6njmzQ zdqaNt/C2qH/1zMd
XxLaEy3PQETXDfRiHXE29CX5HY87Rx3fLh0MQPol6dJUSYgD97hTzDwfZiol /a1iG00Uj4oREFAX
b7bHxqwAAAAAAAA=
------=_NextPart_000_001F_01C5C819.CD94DD30--