tcpdump mailing list archives

Re: Capturing without having superuser rights

From: Jesse Kempf <kempf () rpi edu>
Date: Wed, 15 Oct 2008 20:15:42 -0400

Guy Harris wrote:

On Oct 14, 2008, at 9:30 AM, Max Laier wrote:
> Depends on the platform you are on. On FreeBSD all you need is read> write
> permission to the /dev/bpf* devices.
Also true in NetBSD, OpenBSD, DragonFly BSD, Mac OS X, and, I think,AIX. (And, at least with some versions of libpcap, all you need isread access if you're just capturing.)

For what it's worth, I have systems that are set up with devfs rules(this is on FreeBSD) that grant the group read rights, and assign/dev/bpf* to a group called "bpfreaders". This setup has been running inproduction for most of the year.


Cheers,
-Jesse
-
This is the tcpdump-workers list.
Visit https://cod.sandelman.ca/ to unsubscribe.

Current thread:

Capturing without having superuser rights Damien ANCELIN (Oct 14)
- Re: Capturing without having superuser rights Max Laier (Oct 14)
  - Re: Capturing without having superuser rights Robin Sommer (Oct 14)
  - Re: Capturing without having superuser rights sthaug (Oct 14)
    - Re: Capturing without having superuser rights Damien ANCELIN (Oct 15)
    - Re: Capturing without having superuser rights Gerald Combs (Oct 15)
    - Re: Capturing without having superuser rights Damien ANCELIN (Oct 15)
  - Re: Capturing without having superuser rights Guy Harris (Oct 15)
    - Re: Capturing without having superuser rights Jesse Kempf (Oct 15)
- Re: Capturing without having superuser rights Michael Richardson (Oct 14)