Hello.
i tried to install SNORT 2.9.4.1 and DAQ 2.0.0 in opensuse 12.2. but i have some problems.
1- after i modified snort.conf (in directory /etc/snort) i tried to save it but this error shown:
The document could not be saved, as it was not possible to write to /etc/snort/snort.conf.
Check that you have write access to this file or that enough disk space is available.
2- i created a script and i must copy it to the /etc/init.d. but this error happen when i try to do it:
Access Dinied.could not write to /etc/init.
3- and the last question: i can reamove some of the folders. for example i can remove such this directory: /usr/local/src/snort-2.9.4.1/etc/snort
But the files you name are all system files, thus you must be root to do anything to them. That is the main security of Unix/Linux, that not every end-user can break the system.
On 03/13/2013 02:26 PM, Bouki wrote:
>
> i tried to install SNORT 2.9.4.1 and DAQ 2.0.0 in opensuse 12.2. but i
> have some problems.
first: how did you try to install? i ask because snort in the
openSUSE repos is not at version 2.9.4 and i’d advise you to
install the package which is in the repo for least problems and
highest probability you will have a trouble free install!!
>
> 1- after i modified snort.conf (in directory /etc/snort) i tried to
> save it but this error shown:
> The document could not be saved, as it was not possible to write to
> /etc/snort/snort.conf.
> Check that you have write access to this file or that enough disk space
> is available.
did you do what the error said? that is, did you check to see if you
have write access to the file? only root does, so you have to edit
that file with a root powered file editor–do you know how to do
that? since you didn’t tell the desktop environment you use i cannot
easily tell you how, so tell your desktop and someone can tell you
how to launch a root powered editor…
>
> 2- i created a script and i must copy it to the /etc/init.d. but this
> error happen when i try to do it:
> Access Dinied.could not write to /etc/init.
same problem, only root can save that directory, which you can do
with File Manager - Superuser mode
> 3- and the last question: i can reamove some of the folders. for
> example i can remove such this directory:
> /usr/local/src/snort-2.9.4.1/etc/snort
tell me, did you manually create that directory? why?
so i can not(if i could i never ask you. :D)
how ever. i know root can do all of this but my user is in the root group. so i guess it kind of root. isnt it?
first: how did you try to install? i ask because snort in the
openSUSE repos is not at version 2.9.4 and i’d advise you to
install the package which is in the repo for least problems and
highest probability you will have a trouble free install!!
i did it step by step according to the install guide which i downloaded from the main web site.
did you do what the error said? that is, did you check to see if you
have write access to the file? only root does, so you have to edit
that file with a root powered file editor–do you know how to do
that? since you didn’t tell the desktop environment you use i cannot
easily tell you how, so tell your desktop and someone can tell you
how to launch a root powered editor…
as i said my user is in the root group. so i guess its kind of root. i tried this on root and i did it successfully.
my OS information:
OS: Linux 3.4.6-2.10-desktop i686
System: openSUSE 12.2 (i586)
KDE: 4.8.4 (4.8.4) “release 2”
is that enough? if you need more just tell me.
tell me, did you manually create that directory? why?
i just created. but i cant remove it.
now is there any way to convert my user to the root privilege?
or i must do all these on root?
Apart from the fact that it is IMHO not very clever to let an end-user join the root group, what such a user can do while being in the root group depends on the permission of the files. When you are clever enough to make a normal user member of the root group, I think you are clever enough to check for every file if, and when yes, what a member of the root group can do with that file.
On 03/13/2013 04:56 PM, Bouki wrote:
> as i said my user is in the root group
undo that as it is a major security problem…
it is SO easy to do admin duties the correct way…to edit files as
root, while logged in as yourself just (in kde) just:
-press and hold down Alt and then press F2
-a “run command” blank pops up near the top of your screen
-into it type “kdesu kwrite” (with out the "s) and press enter
-soon you will be asked for the root password, give it
-soon a root powered KWrite pops up
-nav to the file you wanna edit and do so
-when done CLOSE that root powered app (so you don’t forget and use
it when you should be working as a user–it is ALWAYS more safe to
never be root until and unless you must!)
another thing, never ever log into KDE as root…instead, always log
in as yourself and then become root in terminal, or use kdesu or use
a root powered app like YaST…
by the way, you can if you wish, not do the Alt+F2 but instead just
pop open a konsole and type “kdesu kwrite” into it…
more on how to be secure and correct with root powers: