[Snort-users] Acid / MySQL question

Thomas Whipp tkw at ...1885...
Fri Nov 9 01:37:02 EST 2001


But in mysql the username is actually a combination of
username and source (FQDN or IP) - there is nothing to stop
you having a single username/password for all nodes and then
revoking connect (use) priviledges on a per IP basis.

	Tom

> -----Original Message-----
> From: Aaron [mailto:lilnick at ...1303...]
> Sent: 08 November 2001 18:18
> To: Thomas Whipp
> Cc: lance at ...2024...; snort-users at lists.sourceforge.net
> Subject: RE: [Snort-users] Acid / MySQL question
> 
> 
> My guess would be this is intended to make the sensors 
> "disposable" to 
> some degree. If they are compromised, their credentials in

> the db can be 
> removed and a new sensor can be put in place with new
ones. 
> 
> Aaron
> 
> On Thu, 8 Nov 2001, Thomas Whipp wrote:
> 
> ;To be honest I'm not convinced of the benfifit of
multiple
> ;user accounts for MySQL - you can't do row level
permissions
> ;so you don't really gain anything.  Perhaps if you where
> ;doing stuff with oracle then it would make sense.
> 




More information about the Snort-users mailing list