@kmaxwell: I don’t know how to tell where they’re coming from. This is a LAMP set-up so the MySQL server is on the same machine. I don’t have any accounts enabled to talk to outside hosts, just localhost connections. The only queries that look out of place (at first glance) are a lot of blobs being inserted in to wp_secureimage. This information comes from the binary logs.
@pozhonks: Do you know if there’s a way to tell what username is performing the queries?
Also, the Apache logs (as interpreted by webalizer) don’t show hundreds of millions of hits to correspond with these queries.
