On Fri, 22 Jun 2001, Juergen Schoenwaelder wrote:
> This is my favorite. I have patches which restrict the things tcpdump
> is showing users when it is running setuid root. I do not claim that
> the patches make a setuid tcpdump a secure thing - but they are still
> much better than just allowing people to capture any packets on your
> network.
>
> We have had long discussions whether these patches make sense or not
> in the past and the conclusion so far has been that the patches have
> not been included in the tcpdump sources.
IMO, problem with this is that it creates a false sense of security, and
might encourage some people to install tcpdump as setuid more often.
Also, if this was supported, the maintainers might have to acknowledge
that it's legit to run tcpdump as setuid in non-trusted environment.
--
Pekka Savola "Tell me of difficulties surmounted,
Netcore Oy not those you stumble over and fall"
Systems. Networks. Security. -- Robert Jordan: A Crown of Swords
-
This is the TCPDUMP workers list. It is archived at
http://www.tcpdump.org/lists/workers/index.html
To unsubscribe use mailto:[EMAIL PROTECTED]?body=unsubscribe
