On 11/08/2009 12:11 AM, Anthony Liguori wrote:
You don't need root privileges to use a tap device.
You can access a preconfigured tap device but you cannot allocate a
tap device and connect it to a bridge without CAP_NET_ADMIN.
btw, shouldn't we, in the general case, create a bridge per user and use
IP NAT? If we have a global bridge, users can spoof each other's MAC
addresses and interfere with their virtual machines. They can also
interfere with the real network.
That's not a concern with most one-user-per-machine configurations, but
the default configuration should be safe.
--
error compiling committee.c: too many arguments to function
