In message <[EMAIL PROTECTED]> "Jordan K. Hubbard" writes: : It already is. That's not the question under discussion here - we're : talking about how to make things work in the post-installation boot : scenario. I'm in favor of having it in the kernel by default. With one proviso. Any place where we talk about locking down a FreeBSD machine, we'd need to make it explicit that bpf should be turned off when you wish to make it hard for intruders to get packets off your wire in a root compromize situation. I wonder if /dev/bpf should be disabled when secure level is > 1 or 2... Warner To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
- Re: So, back on the topic of e... Sergey Babkin
- Re: So, back on the topic of enabl... Bernd Walter
- Re: So, back on the topic of e... Ben Rosengart
- Re: So, back on the topic of e... Bernd Walter
- Re: So, back on the topic of e... Bill Fumerola
- Re: So, back on the topic of e... Warner Losh
- Re: So, back on the topic of enabl... Christopher Masto
- Re: So, back on the topic of enabl... Warner Losh
- Re: So, back on the topic of enabl... Warner Losh
- Re: So, back on the topic of enabling b... Wes Peters
- Re: So, back on the topic of enabling bpf in GE... Warner Losh
- Re: So, back on the topic of enabling bpf in GENERIC... Nate Williams
- Re: So, back on the topic of enabling bpf in GENERIC... Daniel C. Sobral
- Re: So, back on the topic of enabling bpf in GENERIC... Wes Peters
- Re: So, back on the topic of enabling bpf in GENERIC... Peter Jeremy
- Re: So, back on the topic of enabling bpf in GENERIC... Mark Murray
- Re: So, back on the topic of enabling bpf in GENERI... Jordan K. Hubbard
