Ao usar o AWS re:Post, você concorda com os AWS re:Post Termos de uso
AWS re:Postre:Post

Sudden RDS "[Note] Access denied for user 'root'@'xxx.xxx.xxx.xxx' (using password: YES)"

0

2022-09-07T03:13:15.528272Z 4105348 [Note] Access denied for user 'root'@'xxx' (using password: YES) 2022-09-07T03:13:15.555529Z 4105349 [Note] Access denied for user 'root'@'xxx' (using password: YES) 2022-09-07T03:13:15.559440Z 4105350 [Note] Access denied for user 'root'@'xxx' (using password: YES)

Suddenly, the password of the RDS was wrong as above, so access was not possible.

  • Was not in AWS maintenance
  • We're not working on anything
  • We didn't change the password
  • Monitoring figures were not unusual

Access is possible after resetting the maste* password. I've never experienced anything like this before. I'm worried that this will happen again in the future. I wonder why the password was deleted.

I'd appreciate it if you could tell me the cause and prevention method.

Tópicos
Segurança, identidade e conformidadeMigração e modernizaçãoAnáliseBanco de dados
Tags
AWS Identity and Access ManagementAmazon Relational Database Service
Idioma
English
rePost-User-6654545
feita há 2 anos294 visualizações
1 Resposta
1

AWS never changes/deletes any of the passwords on the customers' databases. If you have enabled CloudTrail and auditing on the databse, then you can check if anyone was accidentally change the password. This should be the best place to start the root cause analysis.

AWS
D-Rao
respondido há 2 anos
profile pictureAWS
ESPECIALISTA
Chris_G
avaliado há 2 anos

Você não está conectado. Fazer login para postar uma resposta.

Uma boa resposta responde claramente à pergunta, dá feedback construtivo e incentiva o crescimento profissional de quem perguntou.

Diretrizes para responder a perguntas

Conteúdo relevante