From owner-freebsd-security Tue Feb 2 20:21:41 1999 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA10164 for freebsd-security-outgoing; Tue, 2 Feb 1999 20:21:41 -0800 (PST) (envelope-from owner-freebsd-security@FreeBSD.ORG) Received: from relay.acadiau.ca (relay.acadiau.ca [131.162.2.90]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA10106 for ; Tue, 2 Feb 1999 20:21:20 -0800 (PST) (envelope-from 026809r@dragon.acadiau.ca) Received: from dragon.acadiau.ca (dragon.acadiau.ca [131.162.1.79]) by relay.acadiau.ca (8.8.5/8.8.5) with ESMTP id AAA14834; Wed, 3 Feb 1999 00:21:08 -0400 (AST) Received: from localhost (026809r@localhost) by dragon.acadiau.ca (8.8.8+Sun/8.8.8) with ESMTP id AAA19940; Wed, 3 Feb 1999 00:21:00 -0400 (AST) Date: Wed, 3 Feb 1999 00:21:00 -0400 (AST) From: Michael Richards <026809r@dragon.acadiau.ca> X-Sender: 026809r@dragon To: "Jordan K. Hubbard" cc: security@FreeBSD.ORG Subject: Re: tcpdump In-Reply-To: <9575.918011566@zippy.cdrom.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 2 Feb 1999, Jordan K. Hubbard wrote: > OK, time to raise this topic again. What to people think about > enabling bpfilter by default in GENERIC? I would think that the majority of us do not use the bpfilter by default. My personal opinion (whether correct or not) is that it is more secure this way. Many kiddiez have scripts to automate tcpdumping for passwords and other such nasties and having to compile a bpf module and load it is beyond many people. (I admit I'd have to go find some instructions) -Michael To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message