Wireshark · Ethereal-dev: Re: [Ethereal-dev] Priv sep in ethereal

Ethereal-dev: Re: [Ethereal-dev] Priv sep in ethereal

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Ulf Lamping <ulf.lamping@xxxxxx>

Date: Tue, 08 Feb 2005 23:00:04 +0100

Lars Roland wrote:

I found an interesting tool that comes with WinPcap.
For administrators wanting to achieve privilege separation forethereal and to have NPF driver loaded only when necessary, look at this:
C:\Programme\WinPcap>npf_mgm.exe /?
NPF Management - Written by Gianluca Varenni (varenni@xxxxxxxxx)

syntax: npf_mgm -s -x -u -i -r -a -d

        -s starts NPF driver
        -x stops NPF driver
        -u uninstalls NPF driver
        -i installs NPF driver
        -r uninstalls and reinstalls NPF driver
        -a changes the NPF driver start-type to auto-start
        -d changes the NPF driver start-type to demand-start
Using "runas" with this tool, you can load the NPF driver just beforestarting ethereal, and unload it when you don't need it anymore.

But what's the benefit compared against "net start npf" / "net stopnpf"? I don't see any real difference.


Regards, ULFL

Follow-Ups:
- Re: [Ethereal-dev] Priv sep in ethereal
  - From: Lars Roland

References:
- Re: [Ethereal-dev] Priv sep in ethereal
  - From: Ulf Lamping
- Re: [Ethereal-dev] Priv sep in ethereal
  - From: Mark Pizzolato
- Re: [Ethereal-dev] Priv sep in ethereal
  - From: Lars Roland

Prev by Date: Re: [Ethereal-dev] Priv sep in ethereal
Next by Date: Re: [Ethereal-dev] Priv sep in ethereal
Previous by thread: Re: [Ethereal-dev] Priv sep in ethereal
Next by thread: Re: [Ethereal-dev] Priv sep in ethereal
Index(es):
- Date
- Thread