Public bug reported: In MySQL 8.0 we (Oracle) are adding a plugin to rate-limit/throttle login attempts in order to stop brute-force attacks.
Since this is a security mechanism that has been requested by users, we would also like to backport this plugin to MySQL 5.6 and 5.7. After consulting with Robie Basak (racb), we understand this change to be allowed in Ubuntu under the SRU process (Sect. 2.2, https://wiki.ubuntu.com/StableReleaseUpdates), but if there are any comments or objections, we'd like to hear them now. Impact ====== This functionality is implemented in a plugin. The plugin is not loaded, and the functionality will not be activated unless the DBA explicitly activates it. Regression potential ==================== The potential for regression is considered low for the following reasons: - The new functionality is in a plugin that 1) is not loaded by default, and 2) can be unloaded if it causes problems. - The change does not introduce new SQL syntax, and no existing syntax is affected. - The plugin is new, so it's not used by any other packages in Ubuntu. ** Affects: mysql-5.6 (Ubuntu) Importance: Undecided Status: Invalid ** Affects: mysql-5.7 (Ubuntu) Importance: Undecided Status: Triaged ** Affects: mysql-5.6 (Ubuntu Precise) Importance: Undecided Status: Invalid ** Affects: mysql-5.7 (Ubuntu Precise) Importance: Undecided Status: Invalid ** Affects: mysql-5.6 (Ubuntu Trusty) Importance: Undecided Status: Triaged ** Affects: mysql-5.7 (Ubuntu Trusty) Importance: Undecided Status: Invalid ** Affects: mysql-5.6 (Ubuntu Xenial) Importance: Undecided Status: Invalid ** Affects: mysql-5.7 (Ubuntu Xenial) Importance: Undecided Status: Triaged ** Affects: mysql-5.6 (Ubuntu Yakkety) Importance: Undecided Status: Invalid ** Affects: mysql-5.7 (Ubuntu Yakkety) Importance: Undecided Status: Triaged ** Also affects: mysql-5.6 (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1633485 Title: Backport login throttling plugin to 5.6 and 5.7 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mysql-5.6/+bug/1633485/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
