On 7 September 2016 at 18:41, Robert Haist wrote:
>
> Using this setting the default and creating a suricata user on
> installation would be a very good start I think.
>
> Based on the suricata wiki this might only work for libpcap-mode. But
> maybe this information is
On 07.09.2016 14:06, Pierre Chifflier wrote:
> On 09/07/2016 12:15 PM, Robert Haist wrote:
>> Package: suricata
>> Version: 3.1.1-4
>>
>> It might be a security improvement to let suricata run with non-root
>> privileges and a special permission for the provided capture modes.
>> Running as root
On 09/07/2016 12:15 PM, Robert Haist wrote:
> Package: suricata
> Version: 3.1.1-4
>
> It might be a security improvement to let suricata run with non-root
> privileges and a special permission for the provided capture modes.
> Running as root might be a problem if a protocol parser or some other
On 7 September 2016 at 12:15, Robert Haist wrote:
> Package: suricata
> Version: 3.1.1-4
>
> It might be a security improvement to let suricata run with non-root
> privileges and a special permission for the provided capture modes. Running
> as root might be a problem if a
Package: suricata
Version: 3.1.1-4
It might be a security improvement to let suricata run with non-root privileges
and a special permission for the provided capture modes. Running as root might
be a problem if a protocol parser or some other input-dependant code is
exploitable.
Robert Haist
5 matches
Mail list logo