How to configure MySQL detection Engine. MySQL Detection Engine Settings.
RdpGuard
Intrusion prevention system for your Windows Server
 
Follow:
Share:

MySQL Brute-Force Protection


Protection Overview

With RdpGuard you can easily protect your MySQL server from dictionary-based brute-force attacks.

RdpGuard monitors MySQL logs and blocks the attacker's IP addresses after a specified number of failed login attempts.

The MySQL General Log is used for MySQL version 5.6 and lower, and the Application Event Log is used for MySQL version 5.7 and later.

Multiple MySQL instances are supported for MySQL version 5.7 and later.

Check out the instructions below to learn how to enable and configure brute-force protection for your MySQL server.


To enable MySQL brute-force protection

Start the RdpGuard Dashboard and click on the link next to MySQL

mysql protection link

MySQL Protection Link in RdpGuard Dashboard

The MySQL Settings dialog will open:

mysql protection settings

MySQL Protection Settings Dialog

Turn on Enable MySQL protection

Monitoring Method

Monitoring via Application Event Log

Monitoring via the Application Event Log is recommended for MySQL 5.7 and later. Older MySQL versions do not write failed login information into the Application Event Log, so this monitoring method only works with MySQL 5.7 and later.

Monitoring via MySQL General Log

Monitoring via the MySQL General Log works with all MySQL editions but may be slow on heavily loaded MySQL instances.

MySQL General Logging must be enabled if you choose the MySQL General Log as a monitoring method. Please check the following instructions to learn how to enable General Logging: How to enable General Logging for MySQL Server.

Automatically detect config file location

In most cases, RdpGuard is able to detect the MySQL config file location automatically. However, in some cases, you may need to specify the MySQL config file my.ini (or my.cnf) manually.

In such a case, disable automatic config file discovery and specify the MySQL config file in the corresponding text box.

Automatically detect general log file location

In most cases, RdpGuard is able to detect the location of the general log file automatically if the my.ini (or my.cnf) file is detected or specified manually. However, in some cases, you may also need to specify the location of the general log file manually.

In such a case, disable automatic general log file discovery and specify the MySQL general log file in the corresponding text box.

Check engine status

Enable RdpGuard Event Log via the View menu and restart the RdpGuard Service via the Tools menu.

Check the RdpGuard Event log for any related errors. If the MySQL detection engine is not started, specify the location of the MySQL config file and general log file manually.


See Also

How to enable General Logging for MySQL Server.

RdpGuard 9.7.9 Free Trial

RdpGuard protects:

Social Connection
RdpGuard Logo
 
People like RdpGuard!
Our customers say

"This sotware is really great. It's a relief. Because my server is constantly under attack. Thanks RdpGuard" - Joaquim De Sousa Marques

"Nice product. I used to implement something similiar in a low-tech and cumbersome manner via a script called TSBlock (not mine). This makes it much easier and is well worth the pricetag for SMB's." - J. Johnson

"Absolutely amazed at your product. We are a church in the North Dallas area, and I discovered this morning multiple failed logon attempts via our Remote Access Server. A friend suggested your product, so I immediately downloaded the trial. It had a list of about five blocked IP addresses in minutes, and that was enough to lead me to push the BUY button. Over the past 10-15 minutes the list is now about thirty with at least a third being international attempts to break into our system. Thanks for a great product. You may have just saved us much grief." - John Hallford

"Love the software. RDP on our Windows servers is just ridiculous. We would block it in the router but we have lots of old-time customers that would have issues." - Scott Hirsch

"Love the software! Makes it easier than tailoring VB Scripts!!" - Nick Brennan

"It's a great product - really stopping those RDP attackers :-)" - Dave, UK

"First of all: Your application is very (!!!) useful and I like it very much securing my 2012 R2 server. RdpGuard is the best solution, I found on the market and after 10 minutes of testing it I ordered the fully-featured version. :-)" - Carsten Baltes

Our Other Products
Copyright © 2012-2024 NetSDK Software. All rights reserved.  Terms of Use.  Privacy Policy.