Hello,
As we all know, We have a profile setting called failed_login_attempts, where and which when a user inputs invalid password for a given threshold default is (unlimited) , then the user will be locked. Means the profile has to part with each and every user.
Similarly, if you want to blockade/drop the connections for all users where wrong password attempt reached to defined threshold, oracle 11g introduced a parameter called sec_max_failed_login_attempts (default 10) which protects the database from malfunction access. This feature is especially used when hacker want to access the database with different users (like default users) and try to give random wrong passwords. If and if the hacker failed to crack the password for different users for 10 times then connectivity will be dropped.
This way we can protect the database from malfunction access at database level.
-Thanks
Geek DBA
Follow Me!!!