Date: Sat, 31 Jul 1999 19:34:10 +0200 From: Bernd Walter <ticso@cicely.de> To: Ben Rosengart <ben@skunk.org> Cc: Bernd Walter <ticso@cicely.de>, Warner Losh <imp@village.org>, "Brian F. Feldman" <green@FreeBSD.ORG>, "Jordan K. Hubbard" <jkh@zippy.cdrom.com>, hackers@FreeBSD.ORG Subject: Re: So, back on the topic of enabling bpf in GENERIC... Message-ID: <19990731193410.C18402@cicely8.cicely.de> In-Reply-To: <Pine.BSF.4.10.9907311316430.94119-100000@penelope.skunk.org>; from Ben Rosengart on Sat, Jul 31, 1999 at 01:17:44PM -0400 References: <19990731190814.A18402@cicely8.cicely.de> <Pine.BSF.4.10.9907311316430.94119-100000@penelope.skunk.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, Jul 31, 1999 at 01:17:44PM -0400, Ben Rosengart wrote: > On Sat, 31 Jul 1999, Bernd Walter wrote: > > > That would mean you can't run a secured DHCP server :( > > I think only the client needs BPF. Anyway, you just start the server in > the rc files, before securelevel is raised. AFAIK it needs - but rarpd was already mentioned and there are lots of other tools which needs bpf and may reopen bpf. The securelevel is a realy nice feature and I use it often. My problem with it is that I asume the more features are put in the more often users may see that they can't raise it one step higher because of other needs. Maybe a set of sysctls with a switch to off only behavour would be a better way. -- B.Walter COSMO-Project http://www.cosmo-project.de ticso@cicely.de Usergroup info@cosmo-project.de To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19990731193410.C18402>