List:General Discussion« Previous MessageNext Message »
From:Johan De Meersman Date:December 17 2010 9:34am
Subject:Re: Password Reset
View as plain text  
Change password statements should show up in the binary logs, too, in some
form or other.

On Thu, Dec 16, 2010 at 9:58 PM, Alejandro Bednarik <alejandrob@stripped>wrote:

> SQL injection? Check Apache or whatever log files.
>
> On Thu, Dec 16, 2010 at 4:17 PM, Gary <gpaul@stripped> wrote:
>
> > I recieved a call from a client saying the web site did not work, turns
> out
> > the database password was reset, and not by me.  In looking in the DB
> after
> > the PW was reset, I could find nothing out of place, although frankly I
> was
> > not sure what to look for.
> >
> > Is this indicitive of an attack?  Is this something to worry about?  I
> had
> > (or so I assumed) plenty of protections on the files, including one of
> the
> > more popular anit-spam/injection attack systems.
> >
> > Any guidance on this would be appriciated.
> >
> > --
> > Gary
> >
> >
> >
> > __________ Information from ESET Smart Security, version of virus
> signature
> > database 5708 (20101216) __________
> >
> > The message was checked by ESET Smart Security.
> >
> > http://www.eset.com
> >
> >
> >
> >
> >
> > --
> > MySQL General Mailing List
> > For list archives: http://lists.mysql.com/mysql
> > To unsubscribe:    http://lists.mysql.com/mysql?unsub=1
> >
> >
>
>
> --
>
>
> Infrastructure Team
>
> OLX Inc.
>
> Buenos Aires - Argentina
> Phone   : 54.11.4775.6696
> Mobile : 54.911.50436059
> Email: alejandrob@stripped
>



-- 
Bier met grenadyn
Is als mosterd by den wyn
Sy die't drinkt, is eene kwezel
Hy die't drinkt, is ras een ezel

Thread
Password ResetGary16 Dec
  • Re: Password ResetAlejandro Bednarik16 Dec
    • Re: Password ResetJohan De Meersman17 Dec