473,320 Members | 1,857 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 473,320 software developers and data experts.

Mysqld Logs

Hello all,

I am currently suffering from a high loss of my database.the problem
is like this.
I have a DATABASE server running MySQLD 3.23.58.Users vist and sign up
their interest in my website.Now the problem is arising that when a
user signs up first , they get emails of confirmation from my
server.In addition to these emails , the customer also gets some
annoyed e-mails from someone residing/depending totllay on @yahoo.com
email-address maintaining the anonymity.

I did try by sending only e-mails to some my own email address,
whether someone is sniffering through my traffic, but I got no e-mail
except the ones I had sent myself.

After this I added some other email addresses in my DB server but I
sent no email to them at all.This time all email addresses got those
*annoying* e-mails also.
I am really fed up with this issue, getting no clue how to come to
know about this.

I am now thinking about adding --log option to safe_mysql to log all
queries, But I am again doubtfull if that would do any help to me .
Thanks in advance for your result oriented help.
Jul 19 '05 #1
1 1425
Nasir wrote:
After this I added some other email addresses in my DB server but I
sent no email to them at all.This time all email addresses got those
*annoying* e-mails also.


So if I understood correctly, you think someone is reading the e-mail
addresses from your database?

There are many ways to do this:
- There is a virus that reads e-mail addresses from harddrive and sends
atleast itself to those addresses, perhaps same or similar virus could
send spam or other e-mail also. This propably affects you only if you
are a Windows user.
- Someone might have read access to your harddrive, and he/she could
read databasefiles without using the database itself.
- User that has access to database. Unless you are not the root user, it
could be the root user, or someone else that has similar privileges.
- Your database username and password could be too easy for someone to
guess.
- You have leaked the username and password of the database out. For
example password is written to some file which has been readable by
anyone. ( Common issue is that the password is in the php file, and
somewhere at that server someone is using for example php-includes that
take the includable file as a parameter, so that anyone can write the
file they want to include and see php source code and passwords. )
- You allow sql-injections. Which means that with some parameters, users
can commit their own sql queries to your database, for example to see
all e-mail addresses.
- You could have a list of all addresses listed in some page, without
you even knowing it. For example a test page or admin page that you have
forgotten that requires now authentication, or authentication is very poor.
- Something else that I don't know, or what I didn't remember.

So since we have no idea what could be the reason you have to start
eliminating threads. If you can log all queries and find the cause, that
would propably tell a lot. If it tells the username and query that was
committed, it would instantly eliminate a lot of threads. And we know
that someone did get the e-mail addresses fromt here, but there are no
queries to see, we know that someone is reading the database files
without using the database.

Another test (if possible) would be to shut down the http-server (if I
understood correctly and you are using such with your database) and then
try inserting new e-mails. That would perhaps also eliminate some threads.

Also to maximise security, you could encrypt your e-mail addresses when
writing then to database, and decrypt when you need one. Even some
simple algorithm would fool some automated programs like viruses or
search-bots, if they are behind this.

Jul 19 '05 #2

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

0
by: Stephane Raimbault | last post by:
I've been searching the mailing list for a solution to my problem with "mysqld got signal 11;" and I haven't seen any answers that might help me. This is the situation. I have a db that is being...
0
by: Maciej Wiznerowicz | last post by:
Dear Sirs, I can not start MySQL server. More specifically, MySQL was running fine all the time since installation. It stopped working after I used FmPro Migrator to convert some File Maker...
0
by: Robert Morgan | last post by:
------=_NextPart_000_0008_01C3600F.7D6CBCC0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Shut down my Linux PC running MySqld and rebooted this...
0
by: Robert Morgan | last post by:
------=_NextPart_000_0009_01C36013.CF9CC9F0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable ----- Original Message -----=20 From: Robert Morgan=20...
0
by: Gary Cote | last post by:
>Description: I've recently compiled mysql 4.0.14 on redhat 8.0. The installation fails, however, when running mysql_install_db. I've attached a transcript below. I gather from searching the...
3
by: Paul | last post by:
I'm using ssh to administer a mysql server, version 3.23.49, which I just installed. The problem when starting mysqld: I type "mysqld" at the shell prompt and hit return, then I get the message...
1
by: Nasir | last post by:
Hello all, I am currently suffering from a high loss of my database.the problem is like this. I have a DATABASE server running MySQLD 3.23.58.Users vist and sign up their interest in my...
0
by: Azhar H. | last post by:
I upgread mysql 3.23.56 to 4.0.21, succesfully upgraded. But, I observed abnormal behaviour of mysql (or may be i dont know). Thing is, in mysql 3.23.56 when I start service, only one procses exist...
1
by: Jeremy Kohansimeh | last post by:
Hello, I just installed version 4.0.21 on a Mandrake 8.2 system. I cannot get the MySql daemon to run. I am using the following commands, and receiving these errors: $mysqld_safe...
0
by: tomzam | last post by:
I'm trying to get mysql working on Fedora Core 4. Actually trying to start the program mysqld without fatal errors. I posted this message first on the linux misc group - but no luck so far. Maybe...
0
by: DolphinDB | last post by:
The formulas of 101 quantitative trading alphas used by WorldQuant were presented in the paper 101 Formulaic Alphas. However, some formulas are complex, leading to challenges in calculation. Take...
0
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
1
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
0
by: jfyes | last post by:
As a hardware engineer, after seeing that CEIWEI recently released a new tool for Modbus RTU Over TCP/UDP filtering and monitoring, I actively went to its official website to take a look. It turned...
0
by: ArrayDB | last post by:
The error message I've encountered is; ERROR:root:Error generating model response: exception: access violation writing 0x0000000000005140, which seems to be indicative of an access violation...
1
by: PapaRatzi | last post by:
Hello, I am teaching myself MS Access forms design and Visual Basic. I've created a table to capture a list of Top 30 singles and forms to capture new entries. The final step is a form (unbound)...
0
by: CloudSolutions | last post by:
Introduction: For many beginners and individual users, requiring a credit card and email registration may pose a barrier when starting to use cloud servers. However, some cloud server providers now...
0
by: Shællîpôpï 09 | last post by:
If u are using a keypad phone, how do u turn on JavaScript, to access features like WhatsApp, Facebook, Instagram....
0
by: af34tf | last post by:
Hi Guys, I have a domain whose name is BytesLimited.com, and I want to sell it. Does anyone know about platforms that allow me to list my domain in auction for free. Thank you

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.