From owner-freebsd-current@FreeBSD.ORG Fri Jul 16 13:42:27 2004 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3AB9916A4CE for ; Fri, 16 Jul 2004 13:42:27 +0000 (GMT) Received: from phoenix.net.informatik.tu-muenchen.de (phoenix.net.informatik.tu-muenchen.de [131.159.14.1]) by mx1.FreeBSD.org (Postfix) with ESMTP id 79E3443D41 for ; Fri, 16 Jul 2004 13:42:26 +0000 (GMT) (envelope-from jw@net.in.tum.de) Received: from falcon.net.informatik.tu-muenchen.de (falcon.net.informatik.tu-muenchen.de [131.159.14.30])1F42E222E; Fri, 16 Jul 2004 15:42:25 +0200 (CEST) Received: from falcon.net.informatik.tu-muenchen.de (localhost [127.0.0.1]) id i6GDgeZL026023; Fri, 16 Jul 2004 15:42:40 +0200 (CEST) (envelope-from jw@falcon.net.informatik.tu-muenchen.de) Received: (from jw@localhost)i6GDgelJ026022; Fri, 16 Jul 2004 15:42:40 +0200 (CEST) (envelope-from jw) Date: Fri, 16 Jul 2004 15:42:40 +0200 From: Joerg Wallerich To: Patrick Dung Message-ID: <20040716134240.GA25987@net.in.tum.de> References: <20040715143234.39600.qmail@web51807.mail.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20040715143234.39600.qmail@web51807.mail.yahoo.com> User-Agent: Mutt/1.5.6i cc: freebsd-current@freebsd.org Subject: Re: tcpdump (/dev/bpf* permission) in FreeBSD-current X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Joerg Wallerich List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Jul 2004 13:42:27 -0000 On Thu, Jul 15, 2004 at 10:32:34PM +0800, Patrick Dung wrote: > Hi > > For FreeBSD-stable, I can change the permission of the > /dev/bpf*. > But for FreeBSD-current, the bpf device is created at > runtime. There is no way to decided the user/group and > permission of the device created. (/etc/devfs.conf can > be used, but it had to be start after the device is > created, where it is not created at boot time). > > I have asked this question in Freebsd-questions but > the problem remains unsolved: > > http://docs.freebsd.org/cgi/getmsg.cgi?fetch=256848+0+archive/2004/freebsd-questions/20040711.freebsd-questions > Hi, add to /etc/devfs.rules: [devfs_ruleset_sniffer=10] add path 'bpf*' unhide mode 0660 group bpf and to /etc/rc.conf devfs_system_ruleset="devfs_ruleset_sniffer" This grants access to bpf devices to all members of group 'bpf'. I don't know if this is 'the way to do it[TM]' but it does work. Joerg -- ---------------------------------------------------------------- - Joerg Wallerich - jw@net.in.tum.de - - Technische Universitaet Muenchen - Phone +49 89 289 18035 - ----------------------------------------------------------------