Which two points can be concluded from the given event?

Consider the Mysql Enterprise Audit plugin.
The following event detail is found in the audit log:
<AUDIT_RECORD
TIMESTAMP=”2013-04-09t01:54:17”
NAME=”Connect”
CONNECTION_ID=”3”
STATUS=”1045”
USER=”kate”
PROXY_USER=””
HOST=”localhost”
IP=””
DB=””/>
Which two points can be concluded from the given event?

Consider the Mysql Enterprise Audit plugin.
The following event detail is found in the audit log:
<AUDIT_RECORD
TIMESTAMP=”2013-04-09t01:54:17”
NAME=”Connect”
CONNECTION_ID=”3”
STATUS=”1045”
USER=”kate”
PROXY_USER=””
HOST=”localhost”
IP=””
DB=””/>
Which two points can be concluded from the given event?

A.
A connection was blocked by a firewall or a similar security mechanism.

B.
A connection was attempted via socket rather than TCP.

C.
A connection failed because the proxy user privileges did not match the login user.

D.
A connection as the user kate was successful.

E.
A connection failed due to authentication being unsuccessful.

Explanation:

Show Hint

Leave a Reply 10

Your email address will not be published. Required fields are marked *

wolfsrudel

wolfsrudel

Incomplete and wrong.

Status 1045 is for access denied.

Should be B, D.

Reply

wolfsrudel

wolfsrudel

Sorry: B, E

Reply

Jose Wilson

Jose Wilson

Why B ?

Reply

vasben

vasben

B becouse HOST=”localhost” means the connection was attampted trough socket

Reply

kyo

kyo

I think becouse IP=””

Reply

dash-68

dash-68

Tested
B because HOST=”localhost”
& E because ERROR 1045 is for acces denied

mysql -u sme -p
Enter password:
ERROR 1045 (28000): Access denied for user ‘sme’@’localhost’ (using password: YES)

Reply

Malika

Malika

It has to be B and E because proxying is not used(proxy text is empty), cant deduce anything about firewall from the audit record but in unix, by default localhost connections happen by socket which can be changed to tcp manually. So answer should be B and E

Reply

Rajareddy VN

Rajareddy VN

I think B,E

Reply