... darkrealms ...

Forums before death by AOL, social media and spammers... "We can't have nice things"

linux.debian.bugs.dist

Ohh some weird Debian bug report thing

28,835 messages

[ << oldest | < older | list | newer > | newest >> ]

Message 28,779 of 28,835

Noah Meyerhans to James Tocknell

Bug#1128644: iputils-ping: ping fails in

24 Feb 26 15:50:01

   From: noahm@debian.org   
      
   On Tue, Feb 24, 2026 at 10:49:04PM +1100, James Tocknell wrote:   
   > A script which shows the issue is (run as a non-root user):   
   >   
   > $ sudo ip netns add temp &&   
   >     sudo ip -netns temp link set lo up &&   
   >     sudo ip netns exec temp su $USER -c "ping 127.0.0.1"   
   > [sudo] password for :   
   > ping: socktype: SOCK_RAW   
   > ping: socket: Operation not permitted   
   > ping: => missing cap_net_raw+p capability or setuid?   
   >   
   > You can call sysctl with a modified net.ipv4.ping_group_range range   
   > within the namespace, but that requires that it occurs in every new   
   > namespace, whereas the capability addition can be done once.   
      
   Correct.   
      
   > The example of how iproute2 handles optionally adding capabilities is at   
   > https://salsa.debian.org/kernel-team/iproute2/-/blob/debian/si   
   /debian/iproute2.postinst,   
   > I can port this over for ping and make a merge request on salsa if   
   > that would help?   
      
   No, we removed that code deliberately some time ago, and will not be   
   installing ping with additional capabilities in the future.   
      
   https://salsa.debian.org/debian/iputils/-/commit/b86c32f4c502b95   
   ab6e37b5947a28a25fcbb6a1#ea5e2ec0d0cf357b4a00c4bc209030230895b2bd   
      
   noah   
      
   --- SoupGate-Win32 v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)

[ << oldest | < older | list | newer > | newest >> ]