Michal Sekletar <msekl...@redhat.com> wrote: > In the future I'd like to see pktdump to implement an architecture > which would allow a user to run a packet dissector completely > unprivileged. Meaning, that *all* privileged operations are done by a > very tiny server program running on the side. We could then not > implement equivalent of -Z option and possibly hook up the pktdump with > an authentication mechanism like polkit or similar.
How about: sudo pktcap - | pktdump - (or some other setuid-gid-restricted goodness for pktcap. No clue if "pktcap" is an available name, or if someone has a better name. Arguably, pktcap actually belongs in the libpcap repository...) -- ] Never tell me the odds! | ipv6 mesh networks [ ] Michael Richardson, Sandelman Software Works | network architect [ ] m...@sandelman.ca http://www.sandelman.ca/ | ruby on rails [ _______________________________________________ tcpdump-workers mailing list tcpdump-workers@lists.tcpdump.org https://lists.sandelman.ca/mailman/listinfo/tcpdump-workers