On Saturday, March 13, 2004, at 01:20 AM, Guy Harris wrote:
On Fri, Mar 12, 2004 at 07:36:56PM -0800, Justin Walker wrote:
As the error message tells you, check to make sure you have sufficient
permissions. Are you running as root? In order to open the packet
filter devices (bpfn), you have to either be the owner, be root, or
the
permissions have to be set so that "other" can read them (which is not
recommended). Since these devices are generally owned by root (and
it's not recommended to change that),
Why not?
Security holes.
Of course, if you own the root password, you can do what you want, and
if the system is in your possession at all times, etc.
When you bypass the built-in attempts at security, ... well ... that's
old news.
and if OS X had a devfs based on the new FreeBSD 5.x one,
And, if pigs had wings ... :-}
I'd recommend
configuring it to create the BPF devices owned by the main user of the
machine. I've also chowned the BPF devices on my FreeBSD partitions
(neither of which are 5.x, so the chown persists).
That way, I don't have to run tcpdump or Ethereal/tethereal with root
privileges, and don't have to chown capture files once I'm finished
capturing to them.
Whether this is a good idea depends entirely on your environment, but
again, it's not recommended.
Cheers,
Justin
--
Justin C. Walker, Curmudgeon-At-Large *
Institute for General Semantics | It's not whether you win or
lose...
| It's whether *I* win or lose.
*--------------------------------------*-------------------------------*