On Wed, Jan 26, 2005 at 01:03:58PM -0600, McDermott, AS Amanda (5841) @ IS wrote:
> Other than unnecessary stress on the machine, are there other > reasons I should not run Nessus as root? Are there times when > I should? Since nessusd (through many plugins) needs access to raw sockets, bind low ports or sniff the traffic you have to run it under root. (However, if your OS can grant chosen POSIX capabilities to a process or a user/group, you can run nessusd under unprivilegged user if it has CAP_NET_RAW, CAP_NET_BIND_SERVICE, CAP_NET_BROADCAST and CAP_NET_ADMIN (?) capabilities.) Martin Mačok ICT Security Consultant _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
