diff options
| author |   Laurent Ghigonis <laurent@p1sec.com> | 2012-12-16 16:30:39 +0100 |
|---|---|---|
| committer | Laurent Ghigonis <laurent@p1sec.com> | 2012-12-16 16:30:39 +0100 |
| commit | 2bc5adb3d821258ee002e31f98d55c5dea672f22 (patch) | |
| tree | 0991afd35544148e5345a8c9d35cd5a40835ab4a /gg_sniff | |
| parent | work on traceroute, initialisation code is there now (diff) | |
| download | glouglou-2bc5adb3d821258ee002e31f98d55c5dea672f22.tar.xz glouglou-2bc5adb3d821258ee002e31f98d55c5dea672f22.zip | |
if using gg_sniff -a, you are not safe anymore
Diffstat (limited to 'gg_sniff')
| -rw-r--r-- | gg_sniff/README.txt | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/gg_sniff/README.txt b/gg_sniff/README.txt index 8d71005..2a43d02 100644 --- a/gg_sniff/README.txt +++ b/gg_sniff/README.txt @@ -36,6 +36,9 @@ Note that gg_sniff activates extra protections on libpcap file descriptor, by setting it to readonly, for now on OpenBSD only. It does so by reimplementing some of libpcap functions, see pcap.c my_pcap_open_live() +If you run gg_sniff in active mode (-a), it will open a readwrite raw socket +(with libpcap) and a readwrite ip socket (with libdnet) which render the +previous protection useless. Limitations =========== |