Hi Michael, Michael Stummvoll <mich...@stummi.org> writes:
> files created with tcpdump (tcpdump -w file.pcap) are world readable by > default. (mode 644) ... if your umask is not strict enough, yes. You can use a umask of 077 to prevent this. tcpdump (actually libpcap) could set things up by default to use a restrictive umask but it would not be portable to all platforms and wouldn't necessarily work on all filesystems. See the previous discussion in this bug report: http://bugs.debian.org/81335 In a nutshell, what it boils down to is: whatever tools you're using, if you have root you also have the responsibility of ensuring the protection of the data it gives you access to. Thanks, -- Romain Francoise <rfranco...@debian.org> http://people.debian.org/~rfrancoise/ -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
