Re: Patch to make Zenmap respect NMAP_PRIVILEGED environment variable

["Tyler J. Wagner" <tyler () tolaris com>]

Hi Fyodor,

On 2013-01-28 21:58, Fyodor wrote:
> Nice.  I was going to suggest that maybe you could document to process on
> SecWiki.org, but now I see that you documented it in a handy blog post:
>
> http://www.tolaris.com/2013/01/24/running-nmap-as-an-unprivileged-user/

I wrote most of that post before the patch was accepted. Since it was, I'll
update the post. :)

I'd be happy to document this on SecWiki as well. I've created an account
and will convert the blog post to a wiki article.

> You might want to add a prominent warning of the security risks of doing
> this.

Good idea. I've updated my post.

> You could also edit the section about the Zenmap warning to note that your
> patch was applied and so future versions of Nmap (and current svn) won't
> have that problem.

Done.

Regards,
Tyler

-- 
"Anyone who truly understands UI design realizes that every preference
option is an admission of defeat: it's there because you couldn't just
get it right the first time."
   -- Jamie Zawinski
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/