Securing MySQL from attacks!

Securing MySQL from attacks!

We did the following code modification to MySQL to protect our servers from attacks.

What it does: It logs the ip/user of failed login attempts and based on the set parameters (failed attempts per time) will block that IP from making anymore attempts for the duration specified.Since this is done silently hackers wont know if the password they sent was actually processed or not, rendering dictionary hacks useless.

Warning to critics: The following code is not meant to win the 'programmer of the year award'. It is a 'quick-fire' solution, derived from protecting our VOIP server (original code from Asterisk) to protect it from SIP hackers.

The code is released under GPL in the hope that it will be helpfull, as it has been to us, but with NO (ZERO) guarantees/warranties.

The file to modify/change is: sql/sql_connect.cc in the MySQL source folder.

There are three code blocks calle 'PAL REMARK' look for it.

Change the folder for the track file (source says /var/lib) to something different on YOUR machine(s) for added security.

mysqlprotect.tar.gz

This image shows how a (Chinese) hacker was blocked the moment we enabled it.

Basically overwriting your file with this and recompiling MySQL should work (but backup your source first!).

See the Asterisk version of this at http://www.abelcanada.com/secureasterisk.php

Good luck.

Comments

Post a Comment

Popular posts from this blog

Writing Systems Of The World

Image
pronunciation of words in English If the words illustrating two symbols sound the same to you (say, if you pronounce cot and caught the same, or do and dew , or marry and merry ), you can ignore the difference between those symbols. Footnotes explain some of these mergers. (See also #Dialect variation below.) Consonants IPA Examples b b uy, ca b d d ye, ca d , d o ð th y, brea the , fa th er dʒ g iant, ba dge , j am f f an, ca ff , ph i ɡ ( ɡ ) [1] g uy, ba g h h igh, a h ead j [2] y es, hallelu j ah k s k y, c ra ck l l ie, s l y, ga l m m y, s m ile, ca m n n igh, s n ide, ca n ŋ sa ng , si n k, si ng er θ th igh, ma th p p ie, s p y, ca p r r ye, t r y, ve r y [3] s s igh, ma ss ʃ sh y, ca sh , emo ti on t t ie, s t y, ca t , a t om tʃ ch ina, ca tch v v ie, ha ve w w ye, s w ine hw wh y [4] z z oo, ha s ʒ equa ti on, plea s ure, vi si on, bei g e [5]
Read more

International Phonetic Alphabet

Image
http://alphabeticcodecharts.com/ipa_pics_TrainingACC.pdf https://en.wikipedia.org/wiki/International_Phonetic_Alphabet International Phonetic Alphabet From Wikipedia, the free encyclopedia Jump to: navigation , search Not to be confused with NATO phonetic alphabet  or Americanist phonetic notation . For other uses, see IPA (disambiguation) . For usage of IPA in Wikipedia, see Help:IPA , Help:IPA/Introduction or Help:IPA for English International Phonetic Alphabet Type Alphabet, partially featural Languages Used for phonetic and phonemic transcription of any language Time period since 1888 Parent systems Romic alphabet Phonotypic alphabet International Phonetic Alphabet Direction Left-to-right ISO 15924 Latn, 215 Unicode alias Latin This article contains phonetic symbols . Without proper rendering support , you may see question marks, boxes, or other symbols instea
Read more

GRBL Feed Rate

Introduction – GRBL Feed Rate Congratulations on getting your CNC machine running. By now you should have adjusted a few of the GRBL settings. If not then before setting your GRBL feed rate, I recommend you set the steps per mm at the very least. Click the following link for a guide that will walk you through the process for the x,y and z axis Steps per mm ($100, $101, $102). GRBL settings 101 Now that your machine moves to the location you want, it’s time to see if we can get the machine there faster. The following guide outlines the process of setting your GRBL feed rate. Why Does Feed Rate Matter? Many times, your machine will have to rapid to a location before or between cuts. Depending on what you are cutting and how big that part is, this can add up to a significant amount of time. Especially if your max GRBL feed rate settings are not optimized. In my case, I was able to more than double the safe speed of my machine. This meant that the machine moved to the cutting po
Read more