From owner-freebsd-questions Mon Sep 6 10:50:23 1999 Delivered-To: freebsd-questions@freebsd.org Received: from dingo.cdrom.com (castles519.castles.com [208.214.165.83]) by hub.freebsd.org (Postfix) with ESMTP id 363AB156C7; Mon, 6 Sep 1999 10:50:08 -0700 (PDT) (envelope-from mike@dingo.cdrom.com) Received: from dingo.cdrom.com (LOCALHOST [127.0.0.1]) by dingo.cdrom.com (8.9.3/8.8.8) with ESMTP id KAA19927; Mon, 6 Sep 1999 10:41:55 -0700 (PDT) (envelope-from mike@dingo.cdrom.com) Message-Id: <199909061741.KAA19927@dingo.cdrom.com> X-Mailer: exmh version 2.0.2 2/24/98 To: Brad Knowles Cc: freebsd-questions@freebsd.org, freebsd-stable@freebsd.org Subject: Re: softupdates in latest build? In-reply-to: Your message of "Mon, 06 Sep 1999 18:09:11 +0200." Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Mon, 06 Sep 1999 10:41:54 -0700 From: Mike Smith Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > > I ran into some problems with a number of things that had changed > in the format of kernel configs, but the biggest thing I've run > across so far is the fact that Berkeley Packet Filtering (bpf) is now > enabled by default, as opposed to disabled by default. > > This opens a *huge* security risk for anyone who doesn't > reconfigure their kernel or doesn't fully comprehend the potential > danger here. Actually, if you'd followed the discussions that preceeded the change, or just thought about it for a minute, you'd realise that this isn't the case at all. By the time an attacker has enough access rights on your system to make use of the packet filter, they have enough access rights to add it if it's not there. > Are we really sure that the FreeBSD Inc. has > sufficiently increased it's liability insurance to cover the > potentially multi-million dollar lawsuits that might result from this > change? You should go back and read the BSD license again, I think. -- \\ The mind's the standard \\ Mike Smith \\ of the man. \\ msmith@freebsd.org \\ -- Joseph Merrick \\ msmith@cdrom.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message