On Fri, Oct 28, 2005 at 04:53:49PM +0200, Jens Holze wrote:
> I've just set up the latest vserver on FC4 and added two vservers one
> based on debian sarge the other on FC4. The debian one should do some
> basic networking stuff and backups. Therefore I'd like to run dnsmasq
> on it. I installed it but when I activated it's dhcp function, i get
> this message at boot:
> Starting DNS forwarder and DHCP server: dnsmasqdnsmasq: cannot create
> DHCP packet socket: Operation not permitted. Is CONFIG_PACKET enabled
> in your kernel? (failed).
> Of course, CONFIG_PACKET is enabled in kernel, so I'm not really
> sure what to do to get the program running. Do I need to add S_CAPS
well, depends on what the tool is 'trying' to do ...
maybe it is opening a raw socket (or trying to do so)
at least the DHCP stuff seems to point into that direction
this would mean that it would require CAP_NET_RAW which
in turn would permit interface sniffing inside the guest
maybe the DHCP stuff can be deactivated via some config
option (for dnsmasqd)?
> Thanks in advance!
> "Wars not make one great" - Master Yoda
> yodahome_at_googlemail.com - http://yodahome.de
> ICQ: 252623701
> watch http://littlevampire.yodahome.de
> the relaunch is coming on Halloween '05
> senseless wisdom of life -
> my geeky blog under http://yodahome.de/blog
> Vserver mailing list
Vserver mailing list
Received on Sat Oct 29 04:53:35 2005