mån 2010-06-21 klockan 21:52 +0100 skrev Andrew Beverley:
> I have done some initial scoping, but have discovered that in order to
> mark a packet using setsockopt(), the process needs to be run as root.
Are you sure it needs root and not just a suitable capability flag? From
what I can tel CAP_NET_ADMIN is sufficient.
Most things are protected by capability flags these days, not by uid==0.
Regards
Henrik
Received on Tue Jun 22 2010 - 08:56:19 MDT
This archive was generated by hypermail 2.2.0 : Tue Jun 22 2010 - 12:00:07 MDT