mysql 参数max_connect_errors研究

李大圣的博客2025-02-17 11:03

1.在server端设置max_connect_errors=3,超过3次连接错误就block

mysql> set global max_connect_errors=3;

Query OK, 0 rows affected (0.00 sec)

mysql> show variables like 'max_connect_errors';

+--------------------+-------+

| Variable_name | Value |

+--------------------+-------+

| max_connect_errors | 3 |

+--------------------+-------+

1 row in set (0.00 sec)

2.在客户端10.153.56.25连接server,不输入密码四次,第五次依旧连接上了

mysql@t3-tksbscms-tkcms-db-mysql01-ma01 bin\]$ mysql -h 10.153.35.2 -u root -p Enter password: ERROR 1045 (28000): Access denied for user 'root'@'10.153.56.25' (using password: NO) \[mysql@t3-tksbscms-tkcms-db-mysql01-ma01 bin\]$ mysql -h 10.153.35.2 -u root -p Enter password: ERROR 1045 (28000): Access denied for user 'root'@'10.153.56.25' (using password: NO) \[mysql@t3-tksbscms-tkcms-db-mysql01-ma01 bin\]$ mysql -h 10.153.35.2 -u root -p Enter password: ERROR 1045 (28000): Access denied for user 'root'@'10.153.56.25' (using password: NO) \[mysql@t3-tksbscms-tkcms-db-mysql01-ma01 bin\]$ mysql -h 10.153.35.2 -u root -p Enter password: ERROR 1045 (28000): Access denied for user 'root'@'10.153.56.25' (using password: NO) \[mysql@t3-tksbscms-tkcms-db-mysql01-ma01 bin\]$ mysql -h 10.153.35.2 -u root -p Enter password: Welcome to the MySQL monitor. Commands end with ; or \\g. Your MySQL connection id is 17 Server version: 5.7.26-log MySQL Community Server (GPL) Copyright (c) 2000, 2023, Oracle and/or its affiliates. Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners. Type 'help;' or '\\h' for help. Type '\\c' to clear the current input statement. mysql\> 3.在server端看到10.153.56.25 HOST_VALIDATED: YES , SUM_CONNECT_ERRORS: 0 , COUNT_HOST_BLOCKED_ERRORS: 0 COUNT_AUTHENTICATION_ERRORS: 4 说明密码错误并不数据连接错误 mysql\> select \* from performance_schema.host_cache\\G \*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\* 1. row \*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\* IP: 10.153.56.25 HOST: NULL HOST_VALIDATED: YES SUM_CONNECT_ERRORS: 0 COUNT_HOST_BLOCKED_ERRORS: 0 COUNT_NAMEINFO_TRANSIENT_ERRORS: 0 COUNT_NAMEINFO_PERMANENT_ERRORS: 1 COUNT_FORMAT_ERRORS: 0 COUNT_ADDRINFO_TRANSIENT_ERRORS: 0 COUNT_ADDRINFO_PERMANENT_ERRORS: 0 COUNT_FCRDNS_ERRORS: 0 COUNT_HOST_ACL_ERRORS: 0 COUNT_NO_AUTH_PLUGIN_ERRORS: 0 COUNT_AUTH_PLUGIN_ERRORS: 0 COUNT_HANDSHAKE_ERRORS: 0 COUNT_PROXY_USER_ERRORS: 0 COUNT_PROXY_USER_ACL_ERRORS: 0 COUNT_AUTHENTICATION_ERRORS: 4 COUNT_SSL_ERRORS: 0 COUNT_MAX_USER_CONNECTIONS_ERRORS: 0 COUNT_MAX_USER_CONNECTIONS_PER_HOUR_ERRORS: 0 COUNT_DEFAULT_DATABASE_ERRORS: 0 COUNT_INIT_CONNECT_ERRORS: 0 COUNT_LOCAL_ERRORS: 0 COUNT_UNKNOWN_ERRORS: 0 FIRST_SEEN: 2025-02-13 14:26:57 LAST_SEEN: 2025-02-13 14:27:10 FIRST_ERROR_SEEN: 2025-02-13 14:26:57 LAST_ERROR_SEEN: 2025-02-13 14:27:02 1 row in set (0.00 sec) 4.通过telnet 10.153.35.2 3306命令,超过3次后第四次后就报错: Host '10.153.56.25' is blocked because of many connection errors; 正常的mysql -h 10.153.35.2 -u root -p输入密码也被 block了 \[mysql@t3-tksbscms-tkcms-db-mysql01-ma01 bin\]$ telnet 10.153.35.2 3306 Trying 10.153.35.2... Connected to 10.153.35.2. Escape character is '\^\]'. N 5.7.26-logM:Nu -A%a-9c2Ubmysql_native_password !#08S01Got packets out of orderConnection closed by foreign host. \[mysql@t3-tksbscms-tkcms-db-mysql01-ma01 bin\]$ \[mysql@t3-tksbscms-tkcms-db-mysql01-ma01 bin\]$ telnet 10.153.35.2 3306 Trying 10.153.35.2... Connected to 10.153.35.2. Escape character is '\^\]'. N 5.7.26-logS8IQA-CNOG\\+\|mSCmysql_native_password !#08S01Got packets out of orderConnection closed by foreign host. \[mysql@t3-tksbscms-tkcms-db-mysql01-ma01 bin\]$ telnet 10.153.35.2 3306 Trying 10.153.35.2... Connected to 10.153.35.2. Escape character is '\^\]'. N 5.7.26-logWd7\[G- -6% "mysql_native_password !#08S01Got packets out of orderConnection closed by foreign host. \[mysql@t3-tksbscms-tkcms-db-mysql01-ma01 bin\]$ telnet 10.153.35.2 3306 Trying 10.153.35.2... Connected to 10.153.35.2. Escape character is '\^\]'. jHost '10.153.56.25' is blocked because of many connection errors; unblock with 'mysqladmin flush-hosts'Connection closed by foreign host. \[mysql@t3-tksbscms-tkcms-db-mysql01-ma01 bin\]$ telnet 10.153.35.2 3306 Trying 10.153.35.2... Connected to 10.153.35.2. Escape character is '\^\]'. jHost '10.153.56.25' is blocked because of many connection errors; unblock with 'mysqladmin flush-hosts'Connection closed by foreign host. \[mysql@t3-tksbscms-tkcms-db-mysql01-ma01 bin\]$ mysql -h 10.153.35.2 -u root -p Enter password: ERROR 1129 (HY000): Host '10.153.56.25' is blocked because of many connection errors; unblock with 'mysqladmin flush-hosts' 5.server端可以看到 SUM_CONNECT_ERRORS: 3 COUNT_HOST_BLOCKED_ERRORS: 3 mysql\> select \* from performance_schema.host_cache\\G \*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\* 1. row \*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\*\* IP: 10.153.56.25 HOST: NULL HOST_VALIDATED: YES SUM_CONNECT_ERRORS: 3 COUNT_HOST_BLOCKED_ERRORS: 3 COUNT_NAMEINFO_TRANSIENT_ERRORS: 0 COUNT_NAMEINFO_PERMANENT_ERRORS: 1 COUNT_FORMAT_ERRORS: 0 COUNT_ADDRINFO_TRANSIENT_ERRORS: 0 COUNT_ADDRINFO_PERMANENT_ERRORS: 0 COUNT_FCRDNS_ERRORS: 0 COUNT_HOST_ACL_ERRORS: 0 COUNT_NO_AUTH_PLUGIN_ERRORS: 0 COUNT_AUTH_PLUGIN_ERRORS: 0 COUNT_HANDSHAKE_ERRORS: 3 COUNT_PROXY_USER_ERRORS: 0 COUNT_PROXY_USER_ACL_ERRORS: 0 COUNT_AUTHENTICATION_ERRORS: 4 COUNT_SSL_ERRORS: 0 COUNT_MAX_USER_CONNECTIONS_ERRORS: 0 COUNT_MAX_USER_CONNECTIONS_PER_HOUR_ERRORS: 0 COUNT_DEFAULT_DATABASE_ERRORS: 0 COUNT_INIT_CONNECT_ERRORS: 0 COUNT_LOCAL_ERRORS: 0 COUNT_UNKNOWN_ERRORS: 0 FIRST_SEEN: 2025-02-13 14:26:57 LAST_SEEN: 2025-02-13 14:33:15 FIRST_ERROR_SEEN: 2025-02-13 14:26:57 LAST_ERROR_SEEN: 2025-02-13 14:33:15 1 row in set (0.00 sec) 6.解决办法就是在server端执行flush hosts; mysql\> flush hosts; Query OK, 0 rows affected (0.00 sec) mysql\> select \* from performance_schema.host_cache\\G Empty set (0.00 sec) 可以看到10.153.56.25这个client又可以连接了 \[mysql@t3-tksbscms-tkcms-db-mysql01-ma01 bin\]$ mysql -h 10.153.35.2 -u root -p Enter password: Welcome to the MySQL monitor. Commands end with ; or \\g. Your MySQL connection id is 24 Server version: 5.7.26-log MySQL Community Server (GPL) Copyright (c) 2000, 2023, Oracle and/or its affiliates. Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners. Type 'help;' or '\\h' for help. Type '\\c' to clear the current input statement. mysql\>

相关推荐
雨白23 分钟前
实现双向滑动的 ScalableImageView(上)
android
Y4090011 小时前
数据库基础知识——聚合函数、分组查询
android·数据库
没有了遇见6 小时前
Android 原生定位(替代高德 / 百度等三方定位)<终极版本>
android
2501_916008897 小时前
iOS 抓包工具有哪些?全面盘点主流工具与功能对比分析
android·ios·小程序·https·uni-app·iphone·webview
2501_915921437 小时前
iOS混淆工具实战 视频流媒体类 App 的版权与播放安全保护
android·ios·小程序·https·uni-app·iphone·webview
CYRUS_STUDIO7 小时前
LLVM 全面解析:NDK 为什么离不开它?如何亲手编译调试 clang
android·编译器·llvm
CYRUS_STUDIO7 小时前
静态分析神器 + 动态调试利器:IDA Pro × Frida 混合调试实战
android·逆向
g_i_a_o_giao10 小时前
Android8 binder源码学习分析笔记(一)
android·java·笔记·学习·binder·安卓源码分析
翻滚丷大头鱼10 小时前
android 四大组件—BroadcastReceiver
android
人生游戏牛马NPC1号10 小时前
学习 Android (二十) 学习 OpenCV (五)
android·opencv·学习
热门推荐
012025 年高教社杯全国大学生数学建模竞赛C 题 NIPT 的时点选择与胎儿的异常判定 完整成品思路模型代码分享,全网首发高质量!!!022025年数学建模国赛C题超详细解题思路032025全国大学生数学建模C题保姆级思路模型(持续更新):NIPT 的时点选择与胎儿的异常判定042025高教社杯国赛数学建模选题建议+初步分析052025国赛B题保姆级教程思路分析 碳化硅外延层厚度的确定06UV安装并设置国内源07奈飞工厂官网,国内Netflix影视在线看|中文网页电脑版入口08KGG转MP3工具|非KGM文件|解密音频09(E题|AI 辅助智能体测)2025年高教杯全国大学生数学建模国赛解题思路|完整代码论文集合10不再让Windows更新!&Edge游戏助手卸载及关闭自动更新