Bug#703194: kismet does not work in setuid mode

[Uwe Storbeck]

Package: kismet
Version: 2011.03.R2-2
Severity: important

Dear Maintainer,

kismet fails to initialize the WLAN interface when installed in
setuid mode and started by a non-root user:

  ERROR: IPC child Source 'eth1' requires root permissions to open, but
         we're not running as root.  Something is wrong.

The user running kismet is in the kismet group:

  $ id
  uid=1000(uwe) gid=1000(uwe) groups=1000(uwe), .. ,138(kismet)

When started as user root kismet works.

None of the kismet binaries is installed setuid root:

  $ ls -l /usr/bin/kismet*
  -rwxr-xr-x 1 root root       259 Feb 27 02:01 /usr/bin/kismet
  -rwxr-xr-x 1 root kismet  632864 Feb 27 02:01 /usr/bin/kismet_capture
  -rwxr-xr-x 1 root root   1408668 Feb 27 02:01 /usr/bin/kismet_client
  -rwxr-xr-x 1 root root    740524 Feb 27 02:01 /usr/bin/kismet_drone
  -rwxr-xr-x 1 root root   1426268 Feb 27 02:01 /usr/bin/kismet_server

Instead capabilities are used:

$ getcap /usr/bin/kismet*
/usr/bin/kismet_capture = cap_net_admin,cap_net_raw+eip

When I manually set the suid bit on /usr/bin/kismet_capture
kismet works for non-root users too.

Maybe a required capability is missing?

Also, I'm not a capability expert, but shouldn't the permissions
on /usr/bin/kismet_capture set to 0750 so that only members of the
group kismet are able to execute the program and not anybody else?

Regards

Uwe


-- System Information:
Debian Release: 7.0
  APT prefers testing
  APT policy: (750, 'testing'), (650, 'unstable'), (500, 'testing-updates')
Architecture: i386 (i686)

Kernel: Linux 3.2.0-4-686-pae (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages kismet depends on:
ii  adduser                3.113+nmu3
ii  debconf [debconf-2.0]  1.5.49
ii  dpkg                   1.16.9
ii  libc6                  2.13-38
ii  libcap2                1:2.22-1.2
ii  libcap2-bin            1:2.22-1.2
ii  libgcc1                1:4.7.2-5
ii  libncurses5            5.9-10
ii  libnl-3-200            3.2.7-4
ii  libnl-genl-3-200       3.2.7-4
ii  libpcap0.8             1.3.0-1
ii  libpcre3               1:8.30-5
ii  libstdc++6             4.7.2-5
ii  libtinfo5              5.9-10

kismet recommends no packages.

Versions of packages kismet suggests:
ii  festival        1:2.1~release-5.1
ii  gpsd            3.6-4
ii  kismet-plugins  2011.03.R2-2

-- Configuration Files:
/etc/kismet/kismet.conf changed [not included]

The only difference in the config file is the ncsource entry:
ncsource=eth1:type=ipw2200

-- debconf information:
* kismet/install-setuid: true
* kismet/install-users: uwe


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org