[Snort-devel] Weekend patches
fygrave at ...1...
Mon Oct 30 02:53:32 EST 2000
On Sun, Oct 29, 2000 at 01:32:30PM -0600, Brian Kifiak wrote:
> > * UID=0 check added at startup time, Snort doesn't allow non-root
> > users to even get started
> Excuse my ignorance, but why? Isn't it possible that a normal user
> could perform the required operations? (Due to a kernel patch,
Yes, I can think of a few other reasons why we shouldn't enforce user to
be root at that stage (where it is in code). F.e. if he reads data from a file.
More information about the Snort-devel