Snort mailing list archives
RE: Access denied error in MySQL
From: Saad Kadhi <bsdguy () docisland org>
Date: 23 Jan 2002 20:35:58 +0100
WELL. FIRST OF ALL, COULD YOU DROP THE HTML MAIL PLEASE. THIS SCREW UP COUNTLESS EMAIL CLIENTS. If we read carefully the line: Database: mysql_error: Access denied for user: '@host130.xyz.com' to database 'snortout' We see that the username "outthere" is not included. It looks like snort doesn't take into account the user part of the connection request. To make sure the pb isn't coming from mysql itself, do sth like from host130.xyz.com (you need mysql-client installed on that box): # mysql -u outthere -h host35.xyz.com snortout 1. if this doesn't work, then launch a sniffer to see if the request reach the DB and then make sure you have "flush priveleges" just in case. btw, it's INSERT & not INSER in your SQL statement. 2. if it works, then the pb comes from your configuration file of snort On Wed, 2002-01-23 at 19:29, protect wrote:
I did it.but even though it is giving me the same error. Thanks, Protect -----Original Message----- From: Dan Fiorito [mailto:danf () clearnetwork com] Sent: Wednesday, January 23, 2002 1:15 PM To: 'protect' Cc: Snort-Users (snort-users () lists sourceforge net) Subject: RE: [Snort-users] Access denied error in MySQL Looks like you just need to add INSER,SELECT,CREATE,DELETE on snortout.* to outthere@ <mailto:outthere () host130 xyz com> host130.xyz.com I have snort 1.8.3 + MySQL + ACID running in my ServerFarm. I want to install another snort on external side i.e. outside firewall using same MySQL server and ACID server in ServerFarm as Centralized server. I have successfully installed another database named snortout on MySQL for it and created another user named outthere and given INSER,SELECT,CREATE,DELETE on snortout.* to outthere@localhost rights on MySQL server. When I am trying to run snort from outside firewall machine by executing snort -c c:\snort\snort.conf -l c:\snort\logs -i1 it is giving me following error: Database: mysql_error: Access denied for user: '@host130.xyz.com' to database 'snortout' Fatal Error, Quitting... I have configured snort.conf on machine outside firewall for output log as follows: Output database: log, mysql, user=outthere dbname=snortout host=host35.xyz.com sensor_name=DMZ Host35.xyz.com is FQDN of MySQL centralized database server. Host130.xyz.com is FQDN of machine out side of Firewall running snort. Can someone help me out in solving this problem? Thanks in advance. Protect
-- /Saad -- [bsdguy () docisland org] [pgp keyid: 35592A6D http://pgp.mit.edu] # buy a geek-in-a-can, point nozzle at technical problem and spray # if desesperate degauss your screen. it might solve your pb as well _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Access denied error in MySQL protect (Jan 23)
- <Possible follow-ups>
- RE: Access denied error in MySQL Dan Fiorito (Jan 23)
- RE: Access denied error in MySQL protect (Jan 23)
- RE: Access denied error in MySQL Saad Kadhi (Jan 23)
- RE: Access denied error in MySQL protect (Jan 23)
- RE: Access denied error in MySQL Steve Halligan (Jan 23)
- RE: Access denied error in MySQL Cessna, Michael (Jan 23)