Can I disable an account in mysql after x failed login attempts?

Question

I would like to disable accounts after x failed login attempts. Is it possible?

score 4 · Answer 1 · answered Feb 14 '15 at 10:23

Also you can use fail2ban for this goal as too easily way . In this case you just install it on you linux OS, then enable the section for [mysqld-iptables] in the /etc/fail2ban/jail.local.

[mysqld-iptables]
enabled  = true
filter   = mysqld-auth
action   = iptables[name=mysql, port=3306, protocol=tcp]
       sendmail-whois[name=MySQL, dest=root, sender=fail2ban@example.com]
logpath  = /var/log/mysqld.log
maxretry = 5

This program check the mysql logs by its own given pattern and then blocks the IP addresses which they try to login more than 5 times, in iptables.

score 1 · Answer 2 · edited Apr 13 '17 at 12:42

1

This can be achieved using auditing logon failure event and using triggers for failure event ,Please have a look at the link Audit logins on MySQL database The locking of account may be handling at active directory locking level

edited Apr 13 '17 at 12:42

Community

1

answered Feb 07 '14 at 10:10

Can I disable an account in mysql after x failed login attempts?

2 Answers2