From owner-freebsd-security@FreeBSD.ORG Fri Aug 27 14:31:15 2010 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4F48010656A5 for ; Fri, 27 Aug 2010 14:31:15 +0000 (UTC) (envelope-from pieter@thedarkside.nl) Received: from mail.thelostparadise.com (router.thelostparadise.com [IPv6:2a02:898:0:30::30:1]) by mx1.freebsd.org (Postfix) with ESMTP id 801DC8FC1B for ; Fri, 27 Aug 2010 14:31:14 +0000 (UTC) Received: by mail.thelostparadise.com (Postfix, from userid 127) id 8AC6673061; Fri, 27 Aug 2010 16:31:13 +0200 (CEST) Received: from localhost by mail.thelostparadise.com (Postfix) with ESMTP id 6F3C273038; Fri, 27 Aug 2010 16:31:11 +0200 (CEST) Message-ID: <4C77CC2E.4030408@thedarkside.nl> Date: Fri, 27 Aug 2010 16:31:10 +0200 From: Pieter de Boer MIME-Version: 1.0 To: =?UTF-8?B?SXN0dsOhbg==?= References: <4C77A267.10102@thelostparadise.com> <5d88fc9506514cabc7390e66a1f9872f@localhost> In-Reply-To: Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Spam-Status: No, score=0.8 required=5.0 tests=BAYES_40,RDNS_NONE autolearn=no version=3.3.1 X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on aberdeen.thelostparadise.com Cc: freebsd-security@freebsd.org Subject: Re: tcpdump -z X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Aug 2010 14:31:15 -0000 On 08/27/2010 04:27 PM, István wrote: > Well to be honest i don't see any case when i want to give sudo+tcpdump > access to any user on my box. And those who are admins/roots anyway the "su > -" just works perfectly and they can run tcpdump. > I simply change the permissions on /dev/bpf* so that some mortal users can run tcpdump directly. It isn't as granular as a well-configured sudo, but worksforme. -- Pieter