MySQL Forums
Forum List  »  Security

Re: Error 1045 (28000) Access denied for user 'USER'@'REVERSE_DNS'
Posted by: Georgi Kodinov
Date: July 08, 2015 01:40AM

Hello,

First of all creating a user with host name '%' will not make a difference if a matching user account with a more concrete name exists. I.e. if you have foo@bar and foo@% and try to connect to the server as foo coming from a host bar foo@bar will always be picked up and foo@% won't be until you remove foo@bar.

Secondly --skip-name-resolve will cause only user accounts with numeric IPs or wildcards for hosts to be matched. Thus I'd suggest you pick one strategy (IP or host names) and stick with it.

Now on your problem. I suggest you upgrade to the lastest MySQL version (as there may be some bugs fixed that affect you if you're on a lower version). Then you go through http://dev.mysql.com/doc/refman/5.6/en/problems-connecting.html.

The most important part is to take a good look of the output of :
SELECT user,host,plugin,password,authentication_string,password_expired FROM mysql.user;
and make sure it covers the host you need and the user account that will be used is the one you're trying to connect as.

Another idea is to back up, empty that table and gradually start adding entries back in a controlled manner.

Also be careful about the DoS protection mechanism that MySQL has (https://dev.mysql.com/doc/refman/5.6/en/host-cache-table.html) and make sure this is not what's blocking your attempts.

And finally watch for error messages in the server error log. The account may be ignored by the server for some reason or some further authentication error information may be displayed there.

Options: ReplyQuote




Sorry, you can't reply to this topic. It has been closed.

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.