Date: Wed, 9 Jan 2008 11:38:24 +0800 From: Cheng-Lung Sung <clsung@tw.freebsd.org> To: Helmut Schneider <jumper99@gmx.de> Cc: ports@freebsd.org Subject: Re: FreeBSD snort Message-ID: <20080109033824.GB28465@FreeBSD.csie.nctu.edu.tw> In-Reply-To: <000501c848e8$e4394470$0d7ca8c0@vpe.de> References: <000501c848e8$e4394470$0d7ca8c0@vpe.de>
next in thread | previous in thread | raw e-mail | index | archive | help
--RIYY1s2vRbPFwWeW
Content-Type: text/plain; charset=big5
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
Hi,
Is there any information about running snort as non-root?=20
Regards,
On Fri, Dec 28, 2007 at 01:30:47AM +0100, Helmut Schneider wrote:
> Hi,
>
> thanks for maintaining snort.
>
> Currently the default snort_flags are "-Dq". Running snort as root IMO is=
a=20
> bad idea. Would you mind to change snort_flags to "-Dq -u nobody -g nobod=
y"=20
> or "-Dq -u snort -g snort" in /usr/local/etc/rc/snort? Personally I prefe=
r=20
> using the "-t" option even more.
>
> Thanks and Regards, Helmut=20
--=20
Alan Cheng-Lung Sung - clsung@
--RIYY1s2vRbPFwWeW
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (FreeBSD)
iD8DBQFHhEGv+AeJ85Vui8ERAmoNAJ4kdh1heKggDFcBd1Vj2tKmwI9ZFACeO+As
9WNIlJQi5WnTe9Xuo5DVh5s=
=8Ziv
-----END PGP SIGNATURE-----
--RIYY1s2vRbPFwWeW--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080109033824.GB28465>