Date: Wed, 02 Dec 1998 16:35:40 -0500 From: Roman Katsnelson <roman@atlas-design.net> To: Ben Smithurst <ben@scientia.demon.co.uk> Cc: "q's" <freebsd-questions@FreeBSD.ORG> Subject: Re: sniffer Message-ID: <3665B2AC.505ECA28@atlas-design.net> References: <36657AD5.1F79504B@atlas-design.net> <19981202200327.C366@scientia.demon.co.uk> <3665A44D.C8DDB6A@atlas-design.net> <19981202204128.A1283@scientia.demon.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
> > It just needs to be setuid root? > > Probably a bad idea. No-one except root should ever have to run it; > would you really want your average luser running it and seeing packets > going in and out of your machine? Reasons exist for us to have it running over web; with a CGI shell script running it. Which httpd doesn't run as root; which means I'd need to setuid it. I can see it being a slight privacy nuisance but would it be a real security hazard? Thanks, Roman -- Roman Katsnelson <-> romank@graphnet.com UNIX Engineer <-> rk.graphnet.com Graphnet, Inc. <-> www.graphnet.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3665B2AC.505ECA28>