
----- Original Message -----
From: "Scott Howard" <scott@doc.net.au>
On Wed, Mar 13, 2013 at 8:54 AM, Jay Ashworth <jra@baylink.com> wrote:
Note that mtr needs to be both setUID root *and* executable by Other in order to work for others than root, assuming you need that. Neither is default.
Or even better, just use setcap to give it permission to open RAW sockets without having full root access.
setcap 'cap_net_raw=+ep' /usr/bin/mtr
Fair point.
That said, I've never seen an OS that included mtr that didn't have it setuid by defualt.
I installed it on OpenSUSE 12.1 on my laptop from... mtr-0.81-3.1.2.i586.rpm which came from the default repo-oss, and on reinstalling it for check, I see that it's root:dialout 4750. So yes, it has SUID, just not the other permissions. That's likely not an accident, but all the machines I manage, I'm the only real user on, generally. Cheers, -- jra -- Jay R. Ashworth Baylink jra@baylink.com Designer The Things I Think RFC 2100 Ashworth & Associates http://baylink.pitas.com 2000 Land Rover DII St Petersburg FL USA #natog +1 727 647 1274