LinuxQuestions.org
Latest LQ Deal: Linux Power User Bundle
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 09-08-2008, 08:19 AM   #1
jindalarpan
Member
 
Registered: Mar 2006
Posts: 94

Rep: Reputation: 15
how to disable promiscuous mode in RHEL


Hi all
can you let me know how i can disable promiscuous mode permanently in linux. i have done from ifconfig. but seems like there are still some settings need to be done.
kindly guide me what need to done and where.
 
Old 09-08-2008, 09:59 AM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,390
Blog Entries: 55

Rep: Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562
In short for an ethernet device there exist two methods of setting promiscuous mode (one not influenced by 'ifconfig') and setting it requires root account rights (Linux Capabilities: see 'man 7 capabilities'). This kind of narrows down *who* can set it. Prevent setting promisc mode globally requires you to take away NET_CAP_ADMIN. In the 2.4 kernel series you had /proc/sys/kernel/cap-bound through which you could alter that, in the 2.6 kernel series it's no longer there and I don't know any apps that could provide control (like 'lcap' did with 2.4). Kernel patches that provide control over NET_CAP_ADMIN are LIDS, GRSecurity and SE Linux. Note that taking away NET_CAP_ADMIN removes more than just promiscuous mode capability.
 
Old 09-09-2008, 01:49 AM   #3
jindalarpan
Member
 
Registered: Mar 2006
Posts: 94

Original Poster
Rep: Reputation: 15
does this mean i have to dissable NET_CAP_ADMIN in kernel and recompile it
 
Old 09-09-2008, 02:06 AM   #4
mahesh.saga
LQ Newbie
 
Registered: Jul 2008
Location: Hyderabad,India
Distribution: Redhat,CentOS,Ubuntu
Posts: 16

Rep: Reputation: 0
hi jindalarpan,
you need to setup the proxy for your machine
 
Old 09-09-2008, 05:36 PM   #5
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,390
Blog Entries: 55

Rep: Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562
Quote:
Originally Posted by mahesh.saga View Post
you need to setup the proxy for your machine
Which proxy? And how would that help? Just curious.


Quote:
Originally Posted by jindalarpan View Post
does this mean i have to dissable NET_CAP_ADMIN in kernel and recompile it
No, it means you have to patch your kernel. Once it's running you can choose to disable NET_CAP_ADMIN or not.
 
Old 09-10-2008, 09:01 AM   #6
jindalarpan
Member
 
Registered: Mar 2006
Posts: 94

Original Poster
Rep: Reputation: 15
what all parameters need to changed while re compiling kernel
 
Old 09-10-2008, 12:34 PM   #7
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,390
Blog Entries: 55

Rep: Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562Reputation: 3562
Each of the kernel patches comes with documentation. Searching the 'net for the name of that patch in combination with the Linux Capability should yield clues. Please try that first and then ask specific questions. That would be more efficient for all. Thanks for understanding.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Iptables in promiscuous mode Barzan Linux - Networking 3 10-23-2005 07:24 AM
Promiscuous Mode: Yes or No? AvatarofVirgo Linux - Security 3 02-22-2005 07:22 PM
eth0 promiscuous mode? emetib Linux - Networking 9 08-26-2004 06:51 PM
How Do I switch to promiscuous mode? 0din Linux - Newbie 1 03-05-2004 12:34 PM
eth0 promiscuous mode susx Linux - Networking 11 09-22-2001 12:39 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 05:20 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration