Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
J
J
Jiffa2019-07-02 08:57:48
MySQL
Jiffa, 2019-07-02 08:57:48

How to find the file from which they are trying to connect to the database?

Good afternoon, today I noticed in the server logs a lot of entries like
Access denied for user 'admin'@'localhost' (using password: YES)
As far as I understand, someone is trying to guess the password to the database. I checked all the files that have changed over the past month in the /var/www directory, I did not find anything unusual. I don't see anything in the process either. How can I find out from which file a connection attempt is made?
Debian 8.7 system, MariaDB 10.1 base

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
J
Jiffa, 2019-07-02
@Jiffa

I did not find the answer directly to this question, but it turned out that the requests come from the phpmyadmin authorization form. Closed it with http authentication and suspicious entries in the logs stopped appearing

Similar questions
G
GRO242019-10-20 17:02:09
Writing a loop to a variable? 2Reply
J
jorshjorsh952017-05-21 11:49:55
PHP or Python for image manipulation? 2Reply
N
NooBick2019-11-09 23:24:47
Question about requests.post, how to do data correctly? 5Reply
Q
Questions00012021-05-07 16:07:05
How to bypass intrusive Youtube ads? ad blockers don't help. You need to switch to a paid plan to stop ads. What can be done? 4Reply
A
Alexander Reshetnyak2017-06-17 19:35:05
Which Blender plugin is better for creating sprites for games? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question