2009/11/21 Mark W. Farnham <mwf@xxxxxxxx>: > do you lock accounts after a certain number of connection attempts that are > bad? > > If so, this can be a symptom of a variety of denial of service attack Sometimes it is just simple db user password change without configuring all webservers/whatever else app servers with new password. So they are trying to connect using old password and locking account again and again :) Of course assuming failed_login_attempts has been set in profiles. Gints Plivna http://www.gplivna.eu -- //www.freelists.org/webpage/oracle-l