The howto at http://www.linbsd.org/ethereal_on_openbsd37.html
has been updated to include a patch to allow 0.10.12 to compile/install.
"I am not your puppet. Since when? Now, get your spongy pink ass out
there, and dance for the cameras." -Death to Smoochy
---------- Forwarded message ----------
Date: Fri, 5 Aug 2005 11:00:59 -0500 (CDT)
From: Ober Heim <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: Howto for Ethereal on OpenBSD 3.7
Now before everyone goes off half cocked about 'ohh, I read that application is
insecure!' rant, be aware that process separation is
currently in the works by me.
With that said, I put together a simple how-to on getting ethereal 0.10.11 to
compile properly.
http://www.linbsd.org/ethereal_on_openbsd37.html
As far as security goes, it goes without saying:
Dont run ethereal in capture/decode mode as root.
Capture with tcpdump to a file and read with ethereal as a non privileged user.
You can even chown _ethereal /dev/bpf* if you are really inclined to run it as
the primary capture device. Limit your captures to specific protocols you need
and nothing else.
Most of the time that there are exploits, it happens to deal with specific
dissectors that you do not care about.
So, say if you only want to capture web traffic then do so.
ethereal -R "http"
Or limit it with capture filters to specific ports
ethereal port 80
</rant>
"I am not your puppet. Since when? Now, get your spongy pink ass out there, and
dance for the cameras." -Death to Smoochy
