Re: User-space controlled raw ethernet - Is this the way to go?

---

• From: Jan Kandziora <jjj@xxxxxx>
• Date: Mon, 25 Feb 2008 12:28:14 +0100

---

Andrew Greensted schrieb:

Is there is an easier way? Perhaps to use libpcap directly as non-root.

Essentially, libpcap does not neet root priviledge, but CAP_NET_RAW and
maybe CAP_NET_ADMIN capabilities.

man 7 capablities
man 2 capset

So a program may start as root, change inheritable capabilities and
seteuid() to non-root, then execve() the libpcap application.

Kind regards

Jan
.

---

• References:
  • User-space controlled raw ethernet - Is this the way to go?
    • From: Andrew Greensted

• Prev by Date: Re: User-space controlled raw ethernet - Is this the way to go?
• Next by Date: Re: User-space controlled raw ethernet - Is this the way to go?
• Previous by thread: Re: User-space controlled raw ethernet - Is this the way to go?
• Next by thread: Re: User-space controlled raw ethernet - Is this the way to go?
• Index(es):
  • Date
  • Thread

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint

linux.derkeiler.com  > Newsgroups  > comp.os.linux.development.system  > 2008-02