Mailinglist Archive: opensuse (1352 mails)

< Previous Next >
Re: [opensuse] Friday quiz - ping: socket: Operation not permitted
  • From: Andrei Borzenkov <arvidjaar@xxxxxxxxx>
  • Date: Fri, 1 Jun 2018 16:36:24 +0300
  • Message-id: <CAA91j0VM-VNjh-XOcwg86XxjQ8=SDOw6V+fVi7utSqMeM_ewfQ@mail.gmail.com>
On Fri, Jun 1, 2018 at 4:33 PM, Per Jessen <per@xxxxxxxxxxxx> wrote:
Andrei Borzenkov wrote:

On Fri, Jun 1, 2018 at 4:28 PM, Per Jessen <per@xxxxxxxxxxxx> wrote:

Andrei Borzenkov wrote:

On Fri, Jun 1, 2018 at 3:34 PM, Per Jessen <per@xxxxxxxxxxxx> wrote:

I would expect ping to be setuid, yes.


Why? None of default permissions file shipped with openSUSE makes ping
SUID root.


Doesn't ping need a raw socket to do an ICMP?


That's exactly what capability cap_net_raw allows.


Ah right. So when file capabilities don't work on NFS, I'd have to make it
setuid or use it as root?


Exactly.

--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse+owner@xxxxxxxxxxxx

< Previous Next >
Follow Ups