When access_denied_errors status variable is incremented

You are viewing an old version of this article. View the current version here.

access_denied_errors status variable is incremented when someone tries to access something they do not have rights to.

This happens in the following cases:

When accessing a database, table or columns that the user does not have rights to access. This error is sent to the client.
When a login fails because of wrong user/password etc. The error is printed to the general log.
If require_secure_transport option is enabled in the server and the user is not used a secure transport. The error is sent to the user.
The user is trying to change to a database/schema he does not have access to. A warning is written to the error log if log_warnings > 1.
The user is trying to use a SHOW command to access an object he do not have rights to see. The error is sent to the client.
The user is accessing something that requires global access, like "CREATE SERVER". The error is sent to the client.

Login failures one can find in the general log. The errors that are sent to the user can be found by using the sql-error-log-plugin. The plugin captures all errors sent to the client. Starting from 10.11.5 forwards, it can also optionally capture all warnings sent to the client.

Comments

Comments loading...

Content reproduced on this site is the property of its respective owners, and this content is not reviewed in advance by MariaDB. The views, information and opinions expressed by this content do not necessarily represent those of MariaDB or any other party.

↑ User Account Management ↑
Account Management SQL Commands
Data-in-Transit Encryption
Roles
Catalogs
Account Locking
Authentication from MariaDB 10.4
User Password Expiry
Limiting Size of Created Disk Temporary Files and Tables
Incrementing of the access_denied_errors status variable

When access_denied_errors status variable is incremented

Comments

Products

Services

Pricing

Resources

About Us

Download MariaDB