From owner-freebsd-net@freebsd.org  Mon May  9 09:02:52 2016
Return-Path: <owner-freebsd-net@freebsd.org>
Delivered-To: freebsd-net@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 4D52AB33621
 for <freebsd-net@mailman.ysv.freebsd.org>;
 Mon,  9 May 2016 09:02:52 +0000 (UTC)
 (envelope-from nick@van-laarhoven.org)
Received: from valery.hibma.org (valery.hibma.org
 [IPv6:2a02:2308::216:3eff:fe79:3a6c])
 by mx1.freebsd.org (Postfix) with ESMTP id 0CB1A186B
 for <freebsd-net@freebsd.org>; Mon,  9 May 2016 09:02:51 +0000 (UTC)
 (envelope-from nick@van-laarhoven.org)
Received: from [IPv6:2001:980:530a:1:7012:3883:b88:d228] (unknown
 [IPv6:2001:980:530a:1:7012:3883:b88:d228])
 (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by valery.hibma.org (Postfix) with ESMTPSA id E21086E0A0E;
 Mon,  9 May 2016 11:02:42 +0200 (CEST)
From: Nick Hibma <nick@van-laarhoven.org>
Date: Mon, 9 May 2016 11:02:42 +0200
Subject: PR 166255 - disable promiscuous mode warning via sysctl
To: freebsd-net@freebsd.org
Message-Id: <52FB7430-BC4D-4157-94FB-4245BA1C3066@van-laarhoven.org>
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
X-Mailer: Apple Mail (2.3124)
Content-Type: text/plain;
	charset=utf-8
Content-Transfer-Encoding: quoted-printable
X-Content-Filtered-By: Mailman/MimeDel 2.1.22
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net/>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 09 May 2016 09:02:52 -0000

Folks,

In PR 166255 [1]  it is suggested to allow disabling =E2=80=98promiscuous =
mode enabled=E2=80=99 warnings. It adds a sysctl to allow toggling this =
behaviour. I have a number of questions before I commit the patch:

	- are there any security related considerations wrt disabling =
this warning?

	- any other warnings that could be useful to disable/enable

	- is the sysctl name net.link.log_promisc_mode_change , to be =
set to 0 to disable, suitable (compare: =
net.link.ether.inet.log_arp_warnings)?

	- perhaps a different value for that sysctl to warn only the =
first time? Not warn again within the next 10 minutes? etc.

I=E2=80=99d appreciate your suggestions.

Nick Hibma
nick@van-laarhoven.org


[1] https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D166255 =
<https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D166255>