BroControl install/deploy doesn't preserve setcap

Description

Running an "install" or "deploy" in broctl results in /usr/local/bro/bin/bro getting replaced by the version on the manager node.

When the rsync happens, the "setcap cap_net_raw,cap_net_admin=eip" capabilities used to run bro from an unprivileged user are not preserved.

A workaround is to rerun the setcap command so that bro can once again attach to an interface from an unprivileged user.

Environment

CentOS 7 using pf_ring in a cluster deployment.

Assignee

Unassigned

Reporter

Benjamin Wood

Labels

External issue ID

None

Components

Affects versions

Priority

Normal
Configure