[Snort-users] No output to ACID

Edin Dizdarevic edin.dizdarevic at ...7509...
Tue Apr 15 04:37:04 EDT 2003


Hi,

login in MySQL and grant your user access to the DB-tables.

That is done with something like this:

GRANT privileges on <DB>.<table> to 'user'@'host' identified by 
'password';

For ex.

GRANT ALL on snort.* to 'snortlogger'@'192.168.0.2' identified by 
'your_secret_and_long_pw';

privileges may be=SELECT, UPDATE, ALTER, ...
MySQL-DB=snort
user=snortlogger
host=192.168.0.2
password=your_secret_and_long_pw

I would rather use IPs instead of hostnames, since they may change
more often.

Remember: That user is then able to delete the alerts too and that may
be not what you want. Check the ACID docs in order to learn more about
that.

I will give you one more hint:

This is how you revoke grants:

REVOKE privileges on <DB>.<table> from 'user'@'host';

Regards,

Edin

Jill Tovey wrote:
> Hi Edin,
> 
> Yes, I created the DB and tables with the latest create_mysql scripts.
 > ...




-- 
Edin Dizdarevic





More information about the Snort-users mailing list