--- Re=E7u de VITEUR.BUNTERMA 04 72 96 57 77 10/09/02 = 08.17 Ethereal needs to put the NIC into promiscuous mode for it to work - I believe that only root can do this - anyone tried with the wheel group? This doesn't just apply to Ethereal but one of the ideas I saw was to install whatever suid progs you needed on a box, but then put the /usr/bin/executable file/s on a floppy thereby reducing the exposure of SUID progs. You could then use such progs on 'normal' users workstations= . Matt ------------------------------------------------------------------------= --- Date: Mon, 9 Sep 2002 16:49:38 +0200 Subject: Re: Sniffing I think suid root would solve most problems, however.... do note that th= is will put all of your system at risk! Especially considering just some of the latest exploits/vulnerabilities found in ethereal. I would seriously suggest not using ethereal etc on production boxes (e.g., only use them to troubleshoot specific setups, and preferably in = a lab network). On 9 Sep 2002, SchmiTTT wrote: > > Am Mon, 2002-09-09 um 09.16 schrieb David Fiamingo: > > > > try ethereel > > > > aron_dude wrote: > > > > > does anyone know how to set snort to become a sniffer > > > like sniffing irc sessions and paswords from logins? > > > > > > How do I use ethereal in /home/user mode, and not in root mode ? > What adjustments do i have to make ? > I want to use in user mode with full features . . . > > For hint TUVM > > Regards > Tino. > > ----------------------------------------------------------------------= -- > To unsubscribe email security-discuss-request@linuxsecurity.com > with "unsubscribe" in the subject of the message. > > -- ---- Oskar Andreasson http://www.frozentux.net http://iptables-tutorial.frozentux.net http://ipsysctl-tutorial.frozentux.net mailto:blueflux@koffein.net ------------------------------------------------------------------------ To unsubscribe email security-discuss-request@linuxsecurity.com with "unsubscribe" in the subject of the message. ---- 10/09/02 08.17 ---- Envoy=E9 =E0 -----------------------------= ------- -> security-discuss(a)linuxsecurity.com ------------------------------------------------------------------------ To unsubscribe email security-discuss-request@linuxsecurity.com with "unsubscribe" in the subject of the message.
