Date: Mon, 22 Apr 2002 11:16:58 -0700 (PDT) From: Doug White <dwhite@resnet.uoregon.edu> To: Lyndon Nerenberg <lyndon@orthanc.ab.ca> Cc: freebsd-current@FreeBSD.org Subject: Re: Adding a 'bpf' group for /dev/bpf* Message-ID: <20020422111600.G5217-100000@resnet.uoregon.edu> In-Reply-To: <200204202139.g3KLdEJ80591@orthanc.ab.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 20 Apr 2002, Lyndon Nerenberg wrote: > For the benefit of packet sniffers and other things that only want > read-only access to /dev/bpf*, what do people think of adding a 'bpf' > group for those programs? This allows bpf devices to be read by > programs running with an effective gid of 'bpf' instead of the current > requirement for an effective user of root. I've been running this way > on many of our servers for several months now, and things like snort, > tcpdump, etc., are quite happy with it (under stable). There's the other small problem that you have to be root to set promiscuous mode. Doug White | FreeBSD: The Power to Serve dwhite@resnet.uoregon.edu | www.FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020422111600.G5217-100000>