Description of problem: [zaitcev@lembas ~]$ ssh kvm-rei Last login: Mon Apr 2 13:41:07 2012 from simbelmyne-gw.zaitcev.lan [zaitcev@kvm-rei ~]$ su Password: [root@kvm-rei zaitcev]# tcpdump -n -w xxxx tcpdump: xxxx: Permission denied [root@kvm-rei zaitcev]# Version-Release number of selected component (if applicable): libpcap-1.2.1-2.fc17.x86_64 kernel-3.4.0-0.rc0.git1.2.fc18.x86_64 tcpdump-4.2.1-2.fc17.x86_64 How reproducible: Synchronous Steps to Reproduce: 1. login as a user 2. su 3. tcpdump -w x.dump Actual results: EPERM Expected results: Working Additional info: This worked fine in RHEL 6, regression. SELinux is off: [root@kvm-rei zaitcev]# cat /proc/cmdline ro root=/dev/vda2 rd_NO_LVM rd_NO_LUKS rd_NO_MD rd_NO_DM LANG=en_US.UTF-8 SYSFONT=latarcyrheb-sun16 KEYTABLE=us enforcing=0 [root@kvm-rei zaitcev]# getenforce Permissive I suspect someone was tinkering with capabilities again.
Created attachment 584994 [details] Fix permission denied error Fixed in rawhide. http://koji.fedoraproject.org/koji/taskinfo?taskID=4081569 Feel free to give it a try. It should work now. Once patch gets reviewed I will push update to f17 as well (most likely tomorrow). Feedback is very welcome.
Fix verified using the package tcpdump-4.2.1-3.fc18.x86_64 from Koji. I see there may be other use cases, but this one works now.
tcpdump-4.2.1-3.fc17 has been submitted as an update for Fedora 17. https://admin.fedoraproject.org/updates/tcpdump-4.2.1-3.fc17
tcpdump-4.2.1-3.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report.