can oracle block IPs?
733414Jun 7 2010 — edited Jun 7 2010I don't think we can, but I was asked to look into it. If someone from a specific IP address is trying to brute force their way into a database, can we block the IP? I know we can lock the account if they fail to log in too many times.
I also think we can grab the IP with a before logon trigger and store it in the database. This would be costly performance wise since we get alot of logins. i am not sure how to track failed logins. I was also asked to track if they try to log in with an invalid username and not just an invalid password and then have oracle block the IP.
Is it at all possible to do this?