Package: nfdump Version: 1.5.7-4 Severity: important Hi,
nfdump currently runs as root which is not necessary to function properly. Quoting from upstream website: | Security: none of the tools requires root privileges, unless you have | a port < 1024. However, there is no access control mechanism in nfcapd. | It is assumed, that host level security is in place to filter the | proper IP addresses. I created a user nfdump and use start-stop-daemon's --chuid option to run nfcapd as this user which works without a problem. Regards, Andreas -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.24-1-686 (SMP w/1 CPU core) Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) Shell: /bin/sh linked to /bin/bash Versions of packages nfdump depends on: ii libc6 2.7-10 GNU C Library: Shared libraries ii librrd4 1.3.1-3 Time-series data storage and displ ii lsb-base 3.2-12 Linux Standard Base 3.2 init scrip nfdump recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
