[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Pfctl for non-root users



> # su - hatchet
> $ pfctl -vsr
> pfctl: /dev/pf: Permission denied
> $ whoami
> hatchet
> $ groups
> hatchet wheel
-bash-3.00# ls -alsF /dev/pf
0 crw-------  1 root  wheel   73,   0 Aug 25  2004 /dev/pf
-bash-3.00# more /etc/sudoers | grep www
www ALL=NOPASSWD: /sbin/pfctl
bash-3.00# sudo -u www sudo /sbin/pfctl -s info
Status: Enabled for 5 days 23:44:50           Debug: Urgent
Hostid: 0xab51f65b
State Table                          Total             Rate
  current entries                        4
  searches                         6201705           12.0/s
  inserts                           116814            0.2/s
  removals                          116810            0.2/s
Counters
  match                            4103323            7.9/s
  bad-offset                             0            0.0/s
  fragment                               0            0.0/s
  short                                  0            0.0/s
  normalize                              0            0.0/s
  memory                                 0            0.0/s
  bad-timestamp                          0            0.0/s
You have to use "sudo pfctl".
Greets,
Jonathan