No Title

[an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] No Title [an error occurred while processing this directive] (none)

Promiscious mode for non-roots on Linux

Only root can use a NIC's promiscious mode on a standard Linux kernel (e.g., to capture network packets via tcpdump). Here's a kernel patch that allows all users of a given group to monitor the network. (More precisely, all users of the group are allowed to create sockets of type SOCK_PACKET).

Note that this an ugly hack.

After applying the patch you can set the group id by doing:

          echo <id> >/proc/sys/net/core/capture_group

or by adding a line to /etc/sysctl.conf (on Debian; ymmv)

          net.core.capture_group=<id>

Patch for Linux 2.4.26
Patch for Linux 2.6.5
Patch for Linux 2.6.15.1 (Adapted by Gregor Maier. Thanks!)

Home - 2009-04-11 - Robin Sommer