Wireshark · Wireshark-dev: Re: [Wireshark-dev] [Fwd: [Wireshark-bugs] [Bug 1741] New: Privilege separation patch]

Wireshark-dev: Re: [Wireshark-dev] [Fwd: [Wireshark-bugs] [Bug 1741] New: Privilege separation

From: Stephen Fisher <stephentfisher@xxxxxxxxx>

Date: Mon, 13 Aug 2007 18:02:17 -0600

On Mon, Aug 13, 2007 at 02:58:10PM -0700, Gerald Combs wrote:

> I've submitted a patch which implements some of the changes discussed
> at http://wiki.wireshark.org/Development/PrivilegeSeparation . If no
> one has any objections I'd like to check it in later this week.

Thanks for your effort.  The code looks fine to me on a quick pass by.

> - The autoconf/automake configuration now installs dumpcap and TShark
> setuid by default. A non-privileged user (default "wireshark") is also
> defined.

I think it is best (easiest for users) to have Wireshark run as the user
who started it instead of a special user.  Compiling it to run as a new
user called wireshark or other should be an option.

Steve

Follow-Ups:
- Re: [Wireshark-dev] [Fwd: [Wireshark-bugs] [Bug 1741] New: Privilege separation patch]
  - From: Gerald Combs

References:
- [Wireshark-dev] [Fwd: [Wireshark-bugs] [Bug 1741] New: Privilege separation patch]
  - From: Gerald Combs

Prev by Date: [Wireshark-dev] review_for_checkin requested: [Bug 1741] Privilege separation patch
Next by Date: [Wireshark-dev] Wireshark.exe Crash starting UI
Previous by thread: [Wireshark-dev] [Fwd: [Wireshark-bugs] [Bug 1741] New: Privilege separation patch]
Next by thread: Re: [Wireshark-dev] [Fwd: [Wireshark-bugs] [Bug 1741] New: Privilege separation patch]
Index(es):
- Date
- Thread