[clug] Securing EtherApe with setcap
Bryan Kilgallin (PC)
bryan at netspeed.com.au
Tue Oct 11 06:31:38 UTC 2016
I recently installed EtherApe.
http://etherape.sourceforge.net/
{EtherApe requires root privileges to capture packets (but not to replay
captured files). As such, there can be risks to the machine(s) running
EtherApe when connected to the internet.}
https://en.wikipedia.org/wiki/EtherApe#Security
Please would someone explain the security procedure below. How can I set
that to always/automatically be the case?
{It doesn't need to run as root, it just needs to be able to perform
some network-related tasks that exceed the usual user permissions. Just
use the linux capabilites to only confer these permissions without
giving superuser rights:
sudo setcap 'CAP_NET_RAW+eip CAP_NET_ADMIN+eip' /usr/bin/etherape}
http://serverfault.com/questions/538879/how-secure-its-to-run-the-etherape-as-root
--
www.netspeed.com.au/bryan/
==========================
More information about the linux
mailing list