From owner-freebsd-ports@FreeBSD.ORG  Wed Jan  9 03:56:00 2008
Return-Path: <owner-freebsd-ports@FreeBSD.ORG>
Delivered-To: ports@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 5781B16A46E
	for <ports@freebsd.org>; Wed,  9 Jan 2008 03:56:00 +0000 (UTC)
	(envelope-from clsung@FreeBSD.csie.nctu.edu.tw)
Received: from FreeBSD.csie.nctu.edu.tw (freebsd.cs.nctu.edu.tw
	[140.113.17.209])
	by mx1.freebsd.org (Postfix) with ESMTP id 12D2213C45B
	for <ports@freebsd.org>; Wed,  9 Jan 2008 03:56:00 +0000 (UTC)
	(envelope-from clsung@FreeBSD.csie.nctu.edu.tw)
Received: from localhost (unknown [127.0.0.1])
	by FreeBSD.csie.nctu.edu.tw (Postfix) with ESMTP id DD53A7E980;
	Wed,  9 Jan 2008 11:38:24 +0800 (CST)
Received: from FreeBSD.csie.nctu.edu.tw ([127.0.0.1])
	by localhost (FreeBSD.csie.nctu.edu.tw [127.0.0.1]) (amavisd-new,
	port 10024)
	with ESMTP id sPcZOtUDxFO5; Wed,  9 Jan 2008 11:38:24 +0800 (CST)
Received: by FreeBSD.csie.nctu.edu.tw (Postfix, from userid 1038)
	id 4691E7E9B6; Wed,  9 Jan 2008 11:38:24 +0800 (CST)
Date: Wed, 9 Jan 2008 11:38:24 +0800
From: Cheng-Lung Sung <clsung@tw.freebsd.org>
To: Helmut Schneider <jumper99@gmx.de>
Message-ID: <20080109033824.GB28465@FreeBSD.csie.nctu.edu.tw>
References: <000501c848e8$e4394470$0d7ca8c0@vpe.de>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="RIYY1s2vRbPFwWeW"
Content-Disposition: inline
In-Reply-To: <000501c848e8$e4394470$0d7ca8c0@vpe.de>
X-Fingerprint: E0BC 57F9 F44B 46C6 DB53  8462 F807 89F3 956E 8BC1
X-Public-Key: http://freefall.FreeBSD.org/~clsung/pubring.asc
User-Agent: Mutt/1.5.17 (2007-11-01)
Cc: ports@freebsd.org
Subject: Re: FreeBSD snort
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
	<mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
	<mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Jan 2008 03:56:00 -0000


--RIYY1s2vRbPFwWeW
Content-Type: text/plain; charset=big5
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Hi,

    Is there any information about running snort as non-root?=20

Regards,
On Fri, Dec 28, 2007 at 01:30:47AM +0100, Helmut Schneider wrote:
> Hi,
>
> thanks for maintaining snort.
>
> Currently the default snort_flags are "-Dq". Running snort as root IMO is=
 a=20
> bad idea. Would you mind to change snort_flags to "-Dq -u nobody -g nobod=
y"=20
> or "-Dq -u snort -g snort" in /usr/local/etc/rc/snort? Personally I prefe=
r=20
> using the "-t" option even more.
>
> Thanks and Regards, Helmut=20

--=20
Alan Cheng-Lung Sung - clsung@

--RIYY1s2vRbPFwWeW
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (FreeBSD)

iD8DBQFHhEGv+AeJ85Vui8ERAmoNAJ4kdh1heKggDFcBd1Vj2tKmwI9ZFACeO+As
9WNIlJQi5WnTe9Xuo5DVh5s=
=8Ziv
-----END PGP SIGNATURE-----

--RIYY1s2vRbPFwWeW--