- Non-root users can be permitted to run KSnuffle. Such users can be configured either to see entire packets, or for any application data to be removed.
- A per-user packet filter can be specified, which is applied to all packets, restricting which packets the user can see.