I *really* dislike running apps as root unless I must.
Wireshark's documentation suggests using setcap, so that running as root can be
avoided. I just did that for drone, and so far it seems to work just fine.
the command:
sudo setcap 'CAP_NET_RAW+eip CAP_NET_ADMIN+eip' /usr/bin/drone
this gives the executable the appropriate network-related capabilities, without
the security implications of root access, should there be an exploitable buffer
overflow or similar.
Original issue reported on code.google.com by Mark.Pic...@inin.com on 18 Jul 2014 at 4:06
Original issue reported on code.google.com by
Mark.Pic...@inin.com
on 18 Jul 2014 at 4:06