Does anyone have snort logging to a mysql database?
I am trying to get that to work so I can view the alerts with BASE.
I followed the instructions but snort is not logging to the DB,
Is it possible to log only SQL queries/transactions for a single account (domain)?
I can easily enable logging for the entire server, but I really only need it for a single domain.
MySQL version 5.0.67
how to enable slow-query logging in MySQL ? Im using mysql version 4.1.20
well i just added following line in my.cnf can you please tell me is it correct way or not?
Code:
log-slow-queries=/tmp/slow_queries.log
log-update = /var/lib/mysql/updates.log
to replace the current router/firewall/gateway on my home LAN with a lower-end PC running pfSense. (A FreeBSD-based distro with a web GUI for managing pf and the like.)
Since the system will be passing all the network traffic anyway, I'm interested in the possibility of having it watch for anything suspicious. Snort is the obvious choice: I want it to spot incoming/outgoing suspicious network activity.
What I wonder, though, is if there is really a lot of benefit to running this on a home LAN? If it was a big corporate network, I could see wanting it to keep an eye on things, but we only have a handful of machines, and they're all pretty secure.
It'd be running on a ~1 GHz PC with 512 MB RAM... Given that the machine would already be acting as firewall/router, caching DNS server, and running PHP/Apache for the management interface / graph generation, is piling Snort on top of that asking for trouble?
Is anyone using snort?
Does it really block any web based attacks?
I know I can do port scans, and it can alert you to a whole bunch of false positvies, but is it blocking/detecting any serious attacks on your web server?
If so, which rules are the one is alerting on?
I doubt anyone is writing their own rules so what do you think is the best site for Snort rules for a web server which are strong but also do not result in many false positives.
View 4 Replies View Related[url]
View 0 Replies View RelatedDo many hosters use Snort (intrusion prevention software) on their servers as means to raise security level?
If not Snort, what other intrusion detection/related tools are currently popular?
It would be great to learn the opinion of hosters as well. Early-warning intrusion detection could be very useful in many cases.
i been trying to move my server.. But mysql database is quite big and restoring takes ages 10 12 hours.. is there anyway i can make it quick because database dump takes 10 15mins but restore takes 12hours and it should be a way to make that quick
View 14 Replies View Relatedhow can i setup rsync to backup just mysql database (if possible) every 6 hours or so.
View 14 Replies View RelatedI have are the .frm, .MYD, .MYI how do I restore/rebuild the database?
View 3 Replies View RelatedMy server admin linked me to this:
[url]
I'm using a cpanel based server, but I can't get this to work.
It requires I be in a directory I figure (this step isnt included)
so I type cd /home/username/public_html/
And then i follow the commands. but it doesnt work.
Basically i need to take a mysql database that I uploaded to my directory, and load it back into a database. :@
I have a problem getting mysql to start, so I am planning to setup a new server and move all the mysql databases to a new server.
The problem is I normally get mysql databases when mysql is running by using mysql command lines. Now that I cannot start mysql, I cannot use that method.
Is there a mysql directory that contains all the mysql databases for me to tar it up and untar it on a different? If there is a directory that contains all the mysql databases, do I need to exclude some files/folders so it doesnt conflict with the files/folders on my new mysql server?
we have whm in my server
in whm is one part to name
Repair Mysql Database
this is only for one database
how may i repaired all database in my server?
what steps procedures need to be done to keep your database as safe as possible from the hackers. Anyway to be alert when someone got into your db and try to dump, alter your database?
View 4 Replies View RelatedI got this weird problem with my VPS which has MySQL 4.1.22 running on it. Everything works fine for sometime and then out of a sudden, it stop recognizing the mysql users and refused to allow my PHP scripts to access the database.
It seems that I needed to restart mySQL server to resolve the issue. Then out of the blues, the same problem occurs.
I am running Cpanel on a VPS and there isn't any overloading as the database access is pretty light on my 512mb VPS.
I contacted my web host about the issue and it seems like all they do is to restart the mySQL. This cannot be a solution as it happens at least once or twice a day depending on how soon I could catch the problem.
All the time this problem occurs, the MYSQL Server is still active and working. I can even access it through PHPMyAdmin but not through the scripts.
I just added an hourly crontab so as to restart the MySQL server as a stop gap.
What is the recommended method of backing up big MySQL database of size 2 GB ?
Quote:
# mysqldump gallery > gallery.sql
mysqldump: Got error: 1017: Can't find file: './gallery/10tir_user_group.frm' (errno: 24) when using LOCK TABLES
#
I checked the table, it is fine, but can't do the backup.
Quote:
mysql> check table 10tir_user_group;
+-------------------------+-------+----------+----------+
| Table | Op | Msg_type | Msg_text |
+-------------------------+-------+----------+----------+
| gallery.10tir_user_group | check | status | OK |
+-------------------------+-------+----------+----------+
1 row in set (0.07 sec)
mysql>
ways to improve the database performance in the situation when I have to modify a large table (several million rows), by e.g. adding a column. Currently this would take several hours which is too slow. The bottleneck is disk I/O. I am considering either partitioning the table over several innodb files on several disks, or going to a RAID-5 or RAID-10, it this will give me better write performance.
The database is 130GB large, and the problem table (which I make period changes to) is the largest table on the server. I cannot have downtime of 3 hours each time I make a change and adding blank fields (to be used later, when a new field is needed) is not an option.
Each time I add a column, the cpu goes into high (80%) io wait state for about 3 hours.
I have a hack which would allow me to split the large table into multiple smaller tables based on some criteria (for example, forumID or such). Here are a couple of things but would like to know which is best, and am open to new ideas. The ideas so far:
1. Split the table into 3 or 5 smaller tables each on it's own disk. The disk IO would then not be so bad, and it might only take 1 hour to perform the table change. But this might not work because the changes to the database (as in adding a column) might be serial, meaning only 1 disk is being written to at a time. (Then again, maybe it will work if I launch 3 different scripts, one to update each table at once).
2. Do RAID 5 or 10, and have 3 or 5 disks. This again might not help at all because of the above issue with MySQL writing serially.
I am using latest MySQL 5.0.45 with InnoDB engine on Debian etch Linux
Which do you recommend for mysql databases alone? around 200 - 300 connections anytime
I have heard that mySQL alone can be better on 64bit environment. How about the hardware?