How to remove warning when netstat -anp used by non-root user ?

sterin501 · 09-26-2012, 11:31 AM

Hi ,

Currently I am getting warning when netstat -anp is used by non admin user , how to remove that ?

[sterin@sterin-lap ~]$ netstat -anp | grep 7001
(Not all processes could be identified, non-owned process info
will not be shown, you would have to be root to see it all.)

I dont want that warning message . Is there any way to remove it ?

jsaravana87 · 09-27-2012, 04:57 AM

hI

Quote:

Currently I am getting warning when netstat -anp is used by non admin user , how to remove that ?

Enable sudo permission for user sterin .

jsaravana87 · 09-27-2012, 06:34 AM

@Hendri2201 --I read the link you had posted for sterin501.The link you had posted is something unrevelent to these topic.Dont mess the user with irrevelant post

sterin is facing out problem since he does not have root priviledge or (sudo priviledge) to execute the below command .

[sterin@sterin-lap ~]$ netstat -anp | grep 7001
(Not all processes could be identified, non-owned process info
will not be shown, you would have to be root to see it all.)

sterin501 · 09-27-2012, 10:51 AM

arun,

I am running command from script . If i give sudo , I have to enter password for it . Script wont work properly then .

Thanks
Sterin

chrism01 · 09-27-2012, 08:05 PM

If you really need to, you can specify NOPASSWD in sudo, but definitely list the specific cmds you want enabled; don't use 'ALL'.
You could also try adding the user to the group that owns netstat, or try an ACL for a more fine-tuned approach.

krappdirk · 11-17-2015, 08:22 AM

Probably the only way is to just throw away the std error:

Code:

 netstat -antp 2>/dev/null | grep <port>

Be aware that this suppresses all errors. So be sure you don't expect any ones that might be of interest. For me this is just fine

HTH,

Dirk

berndbausch · 11-17-2015, 08:26 AM

You could try setuid for netstat. I don't know if this poses a security risk though.

Code:

chmod u+s /usr/bin/netstat

(might be /bin/netstat, not sure)

resolv_25 · 12-09-2020, 03:51 AM

Quote:

Originally Posted by krappdirk

Probably the only way is to just throw away the std error:

Code:

 netstat -antp 2>/dev/null | grep <port>

Be aware that this suppresses all errors. So be sure you don't expect any ones that might be of interest. For me this is just fine

HTH,

Dirk

Thanks, old question but still valid.
For example, I just need to check with non privileged user (zabbix monitor) if some port is open and send data to the main monitor server.
This works just fine (1 is true, 0 is false):

Code:

 netstat -antp 2>/dev/null | grep :443 && echo 1 || echo 0