From owner-freebsd-questions  Tue Nov  2  6:42:53 1999
Delivered-To: freebsd-questions@freebsd.org
Received: from axl.noc.iafrica.com (axl.noc.iafrica.com [196.31.1.175])
	by hub.freebsd.org (Postfix) with ESMTP
	id B3B6915139; Tue,  2 Nov 1999 06:42:42 -0800 (PST)
	(envelope-from sheldonh@axl.noc.iafrica.com)
Received: from sheldonh (helo=axl.noc.iafrica.com)
	by axl.noc.iafrica.com with local-esmtp (Exim 3.040 #1)
	id 11if8o-0001zJ-00; Tue, 02 Nov 1999 16:42:30 +0200
From: Sheldon Hearn <sheldonh@uunet.co.za>
To: Marc Silver <marcs@is.co.za>
Cc: Charlie Root <jfincher@cinci.rr.com>,
	freebsd-questions@FreeBSD.ORG, freebsd-newbies@FreeBSD.ORG
Subject: Re: can't use internet after recompiling kernel 
In-reply-to: Your message of "Tue, 02 Nov 1999 16:34:38 +0200."
             <19991102163438.T22585@is.co.za> 
Date: Tue, 02 Nov 1999 16:42:30 +0200
Message-ID: <7644.941553750@axl.noc.iafrica.com>
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG



On Tue, 02 Nov 1999 16:34:38 +0200, Marc Silver wrote:

> I always thought it was a nice feature.  The very fact that 
> bpf is disabled by default means that even if the box is hacked
> and the kernel is in securelevel, tcpdumps become more difficult
> and sniffing too.  :)
> 
> Am I correct in assuming this?

Provided that you understand that "more difficult" means nothing in the
real world, yes.  In this case "more difficult" equates to exactly one
reboot, not to mention the fact that someone has root on your box and
you're in big trouble already. :-)

Ciao,
Sheldon.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message