Re: [Snort-users] Snort en mode NIDS
think you for your help, all things work well know but the problem is when i want to use snort in mode NIDS i must change the directory of mysql.sock in my.cnf file from /tmp/mysql.sock to /var/lib/mysql/mysql.sock as knowing as the mysql.sock directory file is /tmp/mysql.sock so i did a link in /var/lib/mysql/ to /tmp/mysql.sock and it worked but when i wont to use Acid it gaves me this error: Warning: mysql_pconnect(): Can't connect to local MySQL server through socket '/tmp/mysql.sock' (111) in /www/htdocs/adodb/drivers/adodb-mysql.inc.php on line 266 Error (p)connecting to DB : [EMAIL PROTECTED] to resolve this problem i must change the directory from /var/lib/mysql/mysql.sock to /tmp/mysql.sock in my.cnf file and it worked but the same for snort so to resolve this problem when i wont to use snort i start mysql with: mysqld_safe --socket=/var/lib/mysql/mysql.sock and when i wont to use acid i restart mysql with: mysqld_safe --socket=/tmp/mysql.sock i know, it's a stuped solution so please if you have another solution please write it to me think you for your help sanaa From: [EMAIL PROTECTED] To: sanaâ Aitouchen [EMAIL PROTECTED] CC: [EMAIL PROTECTED],[EMAIL PROTECTED] Subject: Re: [Snort-users] Snort en mode NIDS Date: Mon, 5 Apr 2004 12:10:08 -0500 Dejavue! cp snort installation directory/etc/unicode.map /etc/snort/unicode.map vi /etc/snort/snort.conf goto line 285, modify the line to point to the /etc/snort/unicode.map. Mark sanaâ Aitouchen [EMAIL PROTECTED] To: [EMAIL PROTECTED], [EMAIL PROTECTED] Sent by:cc: [EMAIL PROTECTED]Subject: Re: [Snort-users] Snort en mode NIDS ceforge.net 03/29/2004 11:00 AM i'have problem when i wont to use snort in mode NIDS, and when i type shelsnort -l /var/log -h 10.100.11.0/24 -c /etc/snort/snort.conf Running in IDS mode Log directory = /var/log Initializing Network Interface eth0 --== Initializing Snort ==-- Initializing Output Plugins! Decoding Ethernet on interface eth0 Initializing Preprocessors! Initializing Plug-ins! Parsing Rules file /etc/snort/snort.conf +++ Initializing rule chains... ,---[Flow Config]-- | Stats Interval: 0 | Hash Method: 2 | Memcap: 10485760 | Rows : 4099 | Overhead Bytes: 16400(%0.16) `-- No arguments to frag2 directive, setting defaults to: Fragment timeout: 60 seconds Fragment memory cap: 4194304 bytes Fragment min_ttl: 0 Fragment ttl_limit: 5 Fragment Problems: 0 Self preservation threshold: 500 Self preservation period: 90 Suspend threshold: 1000 Suspend period: 30 Stream4 config: Stateful inspection: ACTIVE Session statistics: INACTIVE Session timeout: 30 seconds Session memory cap: 8388608 bytes State alerts: INACTIVE Evasion alerts: INACTIVE Scan alerts: INACTIVE Log Flushed Streams: INACTIVE MinTTL: 1 TTL Limit: 5 Async Link: 0 State Protection: 0 Self preservation threshold: 50 Self preservation period: 90 Suspend threshold: 200 Suspend period: 30 Stream4_reassemble config: Server reassembly: INACTIVE Client reassembly: ACTIVE Reassembler alerts: ACTIVE Zero out flushed packets: INACTIVE flush_data_diff_size: 500 Ports: 21 23 25 53 80 110 111 143 513 1433 Emergency Ports: 21 23 25 53 80 110 111 143 513 1433 ERROR: /etc/snort/snort.conf(285) = Invalid file name for IIS Unicode Map file. Fatal Error, Quitting.. so where is the problem and how i can resolve it , thinks _ MSN Search, le moteur de recherche qui pense comme vous ! http://search.msn.fr/worldwide.asp --- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click ___ Snort-users mailing list [EMAIL PROTECTED] Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users _ MSN Messenger : discutez en direct avec vos amis ! http://www.msn.fr/msger/default.asp -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
installation de mysql
j'ai le red hat 9 et j'ai télécharger mysql-3.23.58-pc-linux-i686.tar.gz j'ai crée le repertoir /usr/local/src et j'ai fais gunzip mysql-3.23.58-pc-linux-i686.tar.gz tar xvf mysql-3.23.58-pc-linux-i686.tar.gz cd mysql-3.23.58-pc-linux-i686 ./configure --prefix=/usr/local/mysql mais ca donnée l'erreur suivante: NOTE: This is a MySQL binary distribution. It's ready to run, you don't need to configure it! To help you a bit, I am now going to create the needed MySQL databasesand start the MySQL server for you. If you run into any trouble, please consult the MySQL manual, that you can find in the Docs directory. Installing all prepared tables 040324 9:51:43 ./bin/mysqld: Shutdown Complete To start mysqld at boot time you have to copy support-files/mysql.serverto the right place for your system PLEASE REMEMBER TO SET A PASSWORD FOR THE MySQL root USER ! This is done with: ./bin/mysqladmin -u root password 'new-password' ./bin/mysqladmin -u root -h iamintrusion password 'new-password' See the manual for more instructions. NOTE: If you are upgrading from a MySQL = 3.22.10 you should runthe ./bin/mysql_fix_privilege_tables. Otherwise you will not be able to use the new GRANT command! You can start the MySQL daemon with: cd . ; ./bin/safe_mysqld You can test the MySQL daemon with the benchmarks in the 'sql-bench' directory: cd sql-bench ; run-all-tests Please report any problems with the ./bin/mysqlbug script! The latest information about MySQL is available on the web at http://www.mysql.com Support MySQL by buying support/licenses at https://order.mysql.com Starting the mysqld server. You can test that it is up and running with the command: ./bin/mysqladmin version [EMAIL PROTECTED] mysql-3.23.58-pc-linux-i686]# Starting mysqld daemon with databases from /usr/local/src/mysql-3.23.58-pc-linux-i686/data 040324 09:51:44 mysqld ended j'aimerais bien savoir ou se trouve l'erreur et comment je peux le régler merci d'avance _ MSN Messenger : discutez en direct avec vos amis ! http://www.msn.fr/msger/default.asp -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: installation de mysql
i have download the rpm MySQL-3.23.58-1.i386.rpm, and i install it without any problems, but when i wont to use Snort en mode NIDS, i use output mysql in the snort .conf and with this command : snort -dev -l ./log -h @ip it gaves me this error: Error:if this build of snort was obtained as a binary distribution,then check for alternate builds that contains the necessary 'mysql' support so i want to know were is the problem and where can i find the source for mysql? please answer me as soon as possible From: Bernard Clement [EMAIL PROTECTED] To: sanaâ Aitouchen [EMAIL PROTECTED],[EMAIL PROTECTED] Subject: Re: installation de mysql Date: Wed, 24 Mar 2004 07:03:04 -0500 Bonjour, For the benefit of the group I will translate the French part of my text :-) Le tarball que vous avez telecharge est en fait le binaire executable de MySQL pas les sources. Donc vous n'avez pas a executer configure sur celui-ci. The tarball that you have downloaded is in fact the eexcutable binary of MySQL not the sources. Therefore, you do not have to execute configure on it. Si vous avez acces au CD de distribution de RedHat je vous recommanderais d'installer MySQL a partir du RPM. Si vous n'avez pas acces a ceux-ci telecharger le RPM pour RedHat 9. Il est en effet beaucoup plus facile d'installer MySQL a partir des RPM. If you have access to the distribution CDs of RedHat I recommend you to install MySQL from the RPM. If you do not have access to those, you should download the RPM for RedHat 9. In effect it is a lot more easier to install MySQL from the RPM. Salutations, Bernard On Wednesday 24 March 2004 05:01, sanaâ Aitouchen wrote: j'ai le red hat 9 et j'ai télécharger mysql-3.23.58-pc-linux-i686.tar.gz j'ai crée le repertoir /usr/local/src et j'ai fais gunzip mysql-3.23.58-pc-linux-i686.tar.gz tar xvf mysql-3.23.58-pc-linux-i686.tar.gz cd mysql-3.23.58-pc-linux-i686 ./configure --prefix=/usr/local/mysql mais ca donnée l'erreur suivante: NOTE: This is a MySQL binary distribution. It's ready to run, you don't need to configure it! To help you a bit, I am now going to create the needed MySQL databasesand start the MySQL server for you. If you run into any trouble, please consult the MySQL manual, that you can find in the Docs directory. Installing all prepared tables 040324 9:51:43 ./bin/mysqld: Shutdown Complete To start mysqld at boot time you have to copy support-files/mysql.serverto the right place for your system PLEASE REMEMBER TO SET A PASSWORD FOR THE MySQL root USER ! This is done with: ./bin/mysqladmin -u root password 'new-password' ./bin/mysqladmin -u root -h iamintrusion password 'new-password' See the manual for more instructions. NOTE: If you are upgrading from a MySQL = 3.22.10 you should runthe ./bin/mysql_fix_privilege_tables. Otherwise you will not be able to use the new GRANT command! You can start the MySQL daemon with: cd . ; ./bin/safe_mysqld You can test the MySQL daemon with the benchmarks in the 'sql-bench' directory: cd sql-bench ; run-all-tests Please report any problems with the ./bin/mysqlbug script! The latest information about MySQL is available on the web at http://www.mysql.com Support MySQL by buying support/licenses at https://order.mysql.com Starting the mysqld server. You can test that it is up and running with the command: ./bin/mysqladmin version [EMAIL PROTECTED] mysql-3.23.58-pc-linux-i686]# Starting mysqld daemon with databases from /usr/local/src/mysql-3.23.58-pc-linux-i686/data 040324 09:51:44 mysqld ended j'aimerais bien savoir ou se trouve l'erreur et comment je peux le régler merci d'avance _ MSN Messenger : discutez en direct avec vos amis ! http://www.msn.fr/msger/default.asp -- Bernard Clement Info-Electronics Systems Inc. Technical Director phone: 514-421-0767 ext: 231 fax: 514-421-0769 email: [EMAIL PROTECTED] _ MSN Messenger : discutez en direct avec vos amis ! http://www.msn.fr/msger/default.asp -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
