From owner-freebsd-security Mon Nov 6 12:13:59 2000 Delivered-To: freebsd-security@freebsd.org Received: from orhi.sarenet.es (orhi.sarenet.es [192.148.167.5]) by hub.freebsd.org (Postfix) with ESMTP id C22FC37B479 for ; Mon, 6 Nov 2000 12:13:47 -0800 (PST) Received: from sarenet.es (sollube.sarenet.es [192.148.167.16]) by orhi.sarenet.es (Postfix) with SMTP id 030ADD061F for ; Mon, 6 Nov 2000 21:11:41 +0000 (WET) Received: from sarenet.es ([192.148.167.77]) by sarenet.es ; Mon, 06 Nov 2000 21:13:38 +0100 Message-ID: <3A071104.7DADD90D@sarenet.es> Date: Mon, 06 Nov 2000 21:13:56 +0100 From: Borja Marcos X-Mailer: Mozilla 4.75 [en] (X11; U; FreeBSD 4.1.1-STABLE i386) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-security@freebsd.org Subject: Correction to tcpdump advisory Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I don't know if my previous message was lost... One of the useful features in FreeBSD is that you don't need to be root to use tcpdump, or any BPF program. It is a simple matter of having permission to access /dev/bpf?. The arvisory states that root privileges are *required* and it is not correct. I use tcpdump and snort as a normal user. Borja. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message