OK ... The NSA stuff... You will have to give ntop a boat load of privileges. Beyond the obvious ones - to it's files, databases, etc. - there are privileges to enable opening sockets, promiscuous sockets, etc.
Best bet is to fire up in warning mode on an isolated/trusted system and give it what it asks for :-)... If you have any specific questions, go ahead and ask them. Once you have the security rules, that's something we should post @ SourceForge or add to the source tree. Or the Fedora team may welcome them - see http://fedora.redhat.com/docs/selinux-faq-fc3/. -----Burton -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mike Schneider Sent: Wednesday, March 02, 2005 7:18 AM To: [email protected] Subject: AW: [Ntop] Multiple NTOP Processes in Linux "SE" means Security Enhanced Linux. Several Kernel implementations that decide what processes may interact with other processes (<- that�s the simple form ;) ) -----Urspr�ngliche Nachricht----- Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Burton Strauss Gesendet: Mittwoch, 2. M�rz 2005 14:14 An: [email protected] Betreff: RE: [Ntop] Multiple NTOP Processes in Linux It's not a bother - though programming stuff belongs in ntop-dev - but, what is "SE"? -----Burton _______________________________________________ Ntop mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop _______________________________________________ Ntop mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop
