From owner-freebsd-hackers  Wed Aug  4  0: 7:57 1999
Delivered-To: freebsd-hackers@freebsd.org
Received: from gratis.grondar.za (gratis.grondar.za [196.7.18.65])
	by hub.freebsd.org (Postfix) with ESMTP id BB01514E84
	for <hackers@FreeBSD.ORG>; Wed,  4 Aug 1999 00:07:48 -0700 (PDT)
	(envelope-from mark@grondar.za)
Received: from grondar.za (localhost [127.0.0.1])
	by gratis.grondar.za (8.9.3/8.9.3) with ESMTP id JAA76327;
	Wed, 4 Aug 1999 09:05:19 +0200 (SAST)
	(envelope-from mark@grondar.za)
Message-Id: <199908040705.JAA76327@gratis.grondar.za>
To: "Jordan K. Hubbard" <jkh@zippy.cdrom.com>
Cc: hackers@FreeBSD.ORG
Subject: Re: So, back on the topic of enabling bpf in GENERIC... 
Date: Wed, 04 Aug 1999 09:05:18 +0200
From: Mark Murray <mark@grondar.za>
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

> This is a clear security vs functionality issue and I need to get a
> good feel for which "cause" is ascendent here in knowing which way to
> jump on the matter.  Can we now hear the closing arguments from the
> pro and con folks?

I am pro.

It takes a root compromise to use it anyway, and its usefulness
for DHCP and rarpd is too compelling.

Perhaps the comments in the GENERIC file could be updated.

M
--
Mark Murray
Join the anti-SPAM movement: http://www.cauce.org


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message