Hello. Since fedora aims to be one of the most secure distros, i think packet socket support should be configured and compiled as a module. Therefore one that needs to use nmap,tcpdump,wireshark and other sniffing tools will still be able to do so but another who doesn't want to will be able to blacklist the module. Just a thought but i would appreciate a reply. Thanks.
On Sat, Mar 08, 2014 at 05:54:20PM +0200, george Nopicture wrote:
Hello. Since fedora aims to be one of the most secure distros, i think packet socket support should be configured and compiled as a module. Therefore one that needs to use nmap,tcpdump,wireshark and other sniffing tools will still be able to do so but another who doesn't want to will be able to blacklist the module. Just a thought but i would appreciate a reply. Thanks.
I believe dhclient needs the packet filter and packet socket options. Given that DHCP is pretty universal, modularizing packet socket may not make any sense.
kernel@lists.fedoraproject.org