Which privileges are required? CAP_NET_ADMIN? Or nothing at all? | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		concerndc1tizen 7 months ago \| parent \| context \| favorite \| on: Httptap: View HTTP/HTTPS requests made by any Linu... Which privileges are required? CAP_NET_ADMIN? Or nothing at all?

alexflint 7 months ago [–]

Nothing at all!

You do need write access to /dev/net/tun. This is standard for all users for the distros that I've looked into, but it is ultimately a distro-specific thing.

concerndc1tizen 7 months ago | [–]

I'm curious because in a Kubernetes environment, the privileges can be minimal, i.e. read only filesystem, running as nobody, empty filesystem, etc.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact