On Tue, 2006-31-01 at 16:26 +0100, Harald Welte wrote: > On Tue, Jan 24, 2006 at 09:19:02PM +0100, Mathieu Geli wrote: > > > Here is a patch that add a netlink virtual interface. > > I really like the possibility that it offers. In fact, I always wanted > something like a 'promiscuous netlink socket'. > > Whether it is the right thing to add a full-blown net_device for it, I > don't know. This really only is a kludge for scapy/ethereal/whatever, > since they just expect tu use network interfaces and AF_PACKET sockets. >
Sorry havent paid attention to the patch until now - i did quickly. On second thought - a Netdevice is really overkill for this (although i have in the past said this could be done by redirecting to a netdevice). This should be a "feature" of the socket interface not just netlink imo. i.e with the right permissions one should be able to attach on per protocol send/recvmsg and see what is being sent. The selinux stuff already has the hooks that could be "used" for this. I think one should just be able to dump to a file what is seen with headers which indicate things like where it was grabbed from etc. What would be really nice is to emulate the tc redir action and be able to steal data or to just mirror it. cheers, jamal - To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html
