Why does ping require the setuid bit?

file-permissions raspberry-pi setuid

In the Jessie version for the Raspberry Pi, ping requires the setuid bit to be set. What is the rationale for this?


Solution 1:

ping needs to generate and receive ICMP packets, and usually that's done using "raw sockets" – a feature limited to root (cap_net_raw) because it could also be abused to sniff and disrupt other traffic on the system.

Many distributions now just give ping the cap_net_raw privilege (see capabilities(7) and getcap(8) manual pages) instead of full setuid root. This however needs both the kernel and the filesystem to support extended attributes (xattrs), and some "minimal" systems disable those.

Also, recently a special "ICMP" socket type was added that allows sending ICMP Echo messages only, without any additional privileges. The ping command hasn't been updated for it yet though.

Related

Can I get (the new) bash on Windows 10 to load .profile
Windows 10 System environment variables don't stick
How do I remove permission to specific user using setfacl
How can I ssh into an ubuntu guest - running on a win10 host - from a remote linux server?
How to remove "Top sites and news feed tab" in new Internet Explorer?
"Dummy Output" instead of audio device on Debian 9
Why can't TempleOS run on modern x86_64 machines?
Remove a site from its default Firefox container
Free HTML Image Map Editor for Windows? [closed]
Any good Exchange clients to replace Outlook? [closed]
Can a virus infect an ISO file?
How do I transfer a video from an iPhone 3GS to my computer?