Having recently been bitten by the awful default value (10) for max_connect_errors on a production server – I’m having a very hard time coming to terms with who the heck thought this would be a good way to do it.
This type of “feature” allows you to effecitvely DOS yourself quickly with just one misconfigured script – or Debian’s stupid debian-sys-maint account not replicating.
I’ve been thinking about how I could avoid this scenario in the future – upping the limit was a no brainer. But another item of curiosity: How do I know what hosts are on the list?
Have a look at this, 6 years later: http://bugs.mysql.com/bug.php?id=24906
So up until 5.6 (still brand new in the DBMS world) – there was no practical way to find out who was on this list.
The default needs to be changed, and this feature should be able to be turned off…