-   Linux - Software (
-   -   Snort Prolem. (

Di0de 07-24-2003 04:46 AM

Snort Prolem.
I'm currently installing an snort on my system everything has been configured to work with mysql. I keep getting this error and it stopping snort from launching =\ can anyone help me with this problem thanks. below is a copy of the error:

root@SYNapse:/etc# snort -c /etc/snort/rules/snort.conf -b -l /root/snort_log_storage/ -Nv -t snort
Running in IDS mode
Log directory = /root/snort_log_storage/

Initializing Network Interface eth0

--== Initializing Snort ==--
Initializing Output Plugins!
Decoding Ethernet on interface eth0
Initializing Preprocessors!
Initializing Plug-ins!
Parsing Rules file /etc/snort/rules/snort.conf

Initializing rule chains...
No arguments to frag2 directive, setting defaults to:
Fragment timeout: 60 seconds
Fragment memory cap: 4194304 bytes
Fragment min_ttl: 0
Fragment ttl_limit: 5
Fragment Problems: 0
Self preservation threshold: 500
Self preservation period: 90
Suspend threshold: 1000
Suspend period: 30
Stream4 config:
Stateful inspection: ACTIVE
Session statistics: INACTIVE
Session timeout: 30 seconds
Session memory cap: 8388608 bytes
State alerts: INACTIVE
Evasion alerts: INACTIVE
Scan alerts: ACTIVE
Log Flushed Streams: INACTIVE
MinTTL: 1
TTL Limit: 5
Async Link: 0
State Protection: 0
Self preservation threshold: 50
Self preservation period: 90
Suspend threshold: 200
Suspend period: 30
Stream4_reassemble config:
Server reassembly: INACTIVE
Client reassembly: ACTIVE
Reassembler alerts: ACTIVE
Ports: 21 23 25 53 80 110 111 143 513 1433
Emergency Ports: 21 23 25 53 80 110 111 143 513 1433
http_decode arguments:
Unicode decoding
IIS alternate Unicode decoding
IIS double encoding vuln
Flip backslash to slash
Include additional whitespace separators
Ports to decode http on: 80
rpc_decode arguments:
Ports to decode RPC on: 111 32771
alert_fragments: INACTIVE
alert_large_fragments: ACTIVE
alert_incomplete: ACTIVE
alert_multiple_requests: ACTIVE
telnet_decode arguments:
Ports to decode telnet on: 21 23 25 119
database: compiled support for ( mysql )
database: configured to use mysql
database: user = snort
database: password is set
database: database name = snort
database: host = localhost
Node unique name is:
database: sensor name =
ERROR: database: mysql_error: Access denied for user: 'snort@localhost' (Using password: YES)
Fatal Error, Quitting..

Di0de 07-24-2003 04:55 AM

ok i know the problem now I have uninstalled and installed mysql from source but for some reason the user names and databases in mysql don't uninstall when I uninstall mysql.. so I can't change my password for mysql and I just forgot it =\... So how do I completely uninstall mysql from source and also get rid of the databases and usernames and passes in mysql... If I can get that done I can install it from there thanks in advance.

/su 07-24-2003 05:50 AM


I really don't know mysql, but I managed a few weeks ago to build a Counter Strike server on a linux box wich used Mysql to create real time stats.

I had the same problem when trying to access my database. The solution was this:

Optional: Create a MySQL username and password for HLstats.

shell> mysql --user=root mysql
mysql> GRANT ALL ON hlstats.* TO hlstats IDENTIFIED BY 'somepassword';

The first "hlstats" is the database name, the second is the username to create.

Note Depending on your MySQL server configuration you may need to do "TO hlstats@localhost" instead of just "TO hlstats".

Hope it helps


/su 07-24-2003 05:53 AM

lol too late... :)

Di0de 07-24-2003 06:02 AM

hrmmm i'm still unable to change my password for mysql i keep getting the denied someone please help thank you /su for some help at least now i can get into mysql but I still have to change a password.

All times are GMT -5. The time now is 11:58 PM.