Re: tcpdump (/dev/bpf* permission) in FreeBSD-current

From: Patrick Dung <patrick_dkt_at_yahoo.com.hk>
Date: Sat, 17 Jul 2004 11:46:47 +0800 (CST)
Hi

It just works. Thanks.
BTW, I think it is good to run tcpdump with a user
like pcap or bpf for security reason.

Regards
Patrick

--- Joerg Wallerich <jw_at_net.in.tum.de> 內容:> On Thu,
Jul 15, 2004 at 10:32:34PM +0800, Patrick
> Dung wrote:
> > Hi
> > 
> > For FreeBSD-stable, I can change the permission of
> the
> > /dev/bpf*.
> > But for FreeBSD-current, the bpf device is created
> at
> > runtime. There is no way to decided the user/group
> and
> > permission of the device created. (/etc/devfs.conf
> can
> > be used, but it had to be start after the device
> is
> > created, where it is not created at boot time).
> > 
> > I have asked this question in Freebsd-questions
> but
> > the problem remains unsolved:
> > 
> >
>
http://docs.freebsd.org/cgi/getmsg.cgi?fetch=256848+0+archive/2004/freebsd-questions/20040711.freebsd-questions
> > 
> 
> Hi,
> 
> add to /etc/devfs.rules:
> 
> [devfs_ruleset_sniffer=10]
> add path 'bpf*' unhide mode 0660 group bpf
> 
> and to /etc/rc.conf
> 
> devfs_system_ruleset="devfs_ruleset_sniffer"
> 
> 
> This grants access to bpf devices to all members of
> group 'bpf'.  I don't know if this is 'the way to do
> it[TM]'
> but it does work.
> 
>   Joerg
> 
> 
> -- 
>
----------------------------------------------------------------
> - Joerg Wallerich                     -
> jw_at_net.in.tum.de       -
> - Technische Universitaet Muenchen    - Phone +49 89
> 289 18035 -
>
----------------------------------------------------------------
>  

_________________________________________________________
必殺技、飲歌、小星星...
浪漫鈴聲  情心連繫
http://us.rd.yahoo.com/evt=22281/*http://ringtone.yahoo.com.hk/
Received on Sat Jul 17 2004 - 01:46:48 UTC

This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:38:02 UTC