Your message dated Tue, 2 Feb 2016 11:16:52 +0100
with message-id
<CAOkSjBhYGN=f9vi28ij85xntpcxlkhqrsnlym2iuwesk66u...@mail.gmail.com>
and subject line iptables-dev: libiptc should not use RAW socket
has caused the Debian Bug report #118187,
regarding iptables-dev: libiptc should not use RAW socket
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
118187: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=118187
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: iptables-dev
Version: 1.2.3-2
Severity: normal
libiptc currently opens a RAW socket to access the system tables. This
unnecessarily forces the application to have the CAP_NET_RAW capability, when
all it needs is the CAP_NET_ADMIN capability. A simple non-raw IP socket
would suffice.
-- System Information
Debian Release: testing/unstable
Architecture: i386
Kernel: Linux hatchling 2.4.13-ac3 #1 Sat Oct 27 19:08:53 CDT 2001 i686
Locale: LANG=en_US, LC_CTYPE=en_US
Versions of packages iptables-dev depends on:
ii iptables 1.2.3-2 IP packet filter administration fo
--- End Message ---
--- Begin Message ---
Hi,
This bug is 15 years old.
I ignore if iptables still uses RAW sockets, but in any case at this
point that wont change.
iptables is now in the way to be replaced by nftables, which uses
Netlink to contact the kernel.
Closing this bug now.
--
Arturo Borrero González
--- End Message ---
