Page 21 of 31 FirstFirst ... 111920212223 ... LastLast
Results 201 to 210 of 309

Thread: Intrusion Detection

  1. #201
    Join Date
    Aug 2009
    Beans
    33

    Re: Intrusion Detection

    no dice. If I use the user of root instead of -u snort, it works and says 0 rows affected.

  2. #202
    Join Date
    Mar 2008
    Beans
    4,715
    Distro
    Ubuntu 9.10 Karmic Koala

    Re: Intrusion Detection

    Try

    Code:
    % mysql -u root -p
    mysql> use mysql
    mysql> select user,host,password from user where user='snort';
    Do you see something like this?
    Code:
    +--------+-----------+-------------------------------------------+
    | user   | host      | password                                  |
    +--------+-----------+-------------------------------------------+
    | snort  | localhost | *XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX | 
    +--------+-----------+-------------------------------------------+

  3. #203
    Join Date
    Aug 2009
    Beans
    33

    Re: Intrusion Detection

    Quote Originally Posted by unutbu View Post
    Try

    Code:
    % mysql -u root -p
    mysql> use mysql
    mysql> select user,host,password from user where user='snort';
    Do you see something like this?
    Code:
    +--------+-----------+-------------------------------------------+
    | user   | host      | password                                  |
    +--------+-----------+-------------------------------------------+
    | snort  | localhost | *XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX | 
    +--------+-----------+-------------------------------------------+

    Error 1146 (42S02): Table 'mysql.usr' doesn't exist

  4. #204
    Join Date
    Mar 2008
    Beans
    4,715
    Distro
    Ubuntu 9.10 Karmic Koala

    Re: Intrusion Detection

    Change usr to user.

    Code:
    select user,host,password from user where user='snort';

  5. #205
    Join Date
    Aug 2009
    Beans
    33

    Re: Intrusion Detection

    Quote Originally Posted by unutbu View Post
    Change usr to user.

    Code:
    select user,host,password from user where user='snort';
    Rebooted and the user showed up. But I still get the access denied for user 'snort'@'localhost'
    Attached Files Attached Files
    Last edited by abrrymnvette; August 28th, 2009 at 08:05 PM.

  6. #206
    Join Date
    Mar 2008
    Beans
    4,715
    Distro
    Ubuntu 9.10 Karmic Koala

    Re: Intrusion Detection

    Okay, you have a snort user on localhost, and it has a password.
    I'm guessing the saved password is not the intended password. Perhaps an
    invisible control character slipped in there too?

    Try typing
    Code:
    grant all privileges on snort.* to 'snort'@'localhost' identified by 'snort_password';
    in gedit, rather than openoffice. Maybe it is just my superstition, but I think gedit is more of a plain text editor, while openoffice is more of a "fancy" text editor.

    When you copy and paste into the gnome-terminal, make sure your quotation marks look like
    the one circled in green, rather than the one in red.
    Attached Images Attached Images

  7. #207
    Join Date
    Aug 2009
    Beans
    33

    Re: Intrusion Detection

    Quote Originally Posted by unutbu View Post
    Okay, you have a snort user on localhost, and it has a password.
    I'm guessing the saved password is not the intended password. Perhaps an
    invisible control character slipped in there too?

    Try typing
    Code:
    grant all privileges on snort.* to 'snort'@'localhost' identified by 'snort_password';
    in gedit, rather than openoffice. Maybe it is just my superstition, but I think gedit is more of a plain text editor, while openoffice is more of a "fancy" text editor.

    When you copy and paste into the gnome-terminal, make sure your quotation marks look like
    the one circled in green, rather than the one in red.

    That's actually what I did this time. But, I "think" I may have gotten it. I just used a different user instead of snort. So, wherever else it says snort, I used the other user name. I've got snort running according to ps and am logged into Base. Now it's time to test.

  8. #208
    Join Date
    Apr 2006
    Location
    Montana
    Beans
    Hidden!
    Distro
    Kubuntu Development Release

    Re: Intrusion Detection

    Thank you unutbu
    There are two mistakes one can make along the road to truth...not going all the way, and not starting.
    --Prince Gautama Siddharta

    #ubuntuforums web interface

  9. #209
    Join Date
    Aug 2009
    Beans
    33

    Re: Intrusion Detection

    So, I have snort running somewhat. When I do a "ps -wef | grep 'snort' " I get the snort process, but it increments every second, like it's starting and immediately dying and restarting. But when I look at /var/log/messages or syslog there are no errors like snort is dying. Am I looking in the wrong spot?

  10. #210
    Join Date
    Sep 2009
    Location
    on my couch
    Beans
    20

    Arrow Re: Intrusion Detection

    Thanks alot this was a really helpful thread. Keep up the good work

Page 21 of 31 FirstFirst ... 111920212223 ... LastLast

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •