Re: Security in general (was Re: Proposal "LUID")

From: Alan Cox (alan@lxorguk.ukuu.org.uk)
Date: Tue Apr 18 2000 - 18:22:02 EST

Next message: Olaf Titz: "Re: [patch] repost of netfilter/NIPQUAD patches"
Previous message: Kurt Garloff: "max no of kernel params"
In reply to: Linda Walsh: "Re: Security in general (was Re: Proposal "LUID")"
Next in thread: yoann@mandrakesoft.com: "Re: Security in general (was Re: Proposal "LUID")"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> > Several system administrator prefer to run their server as an user
> > in case it is compromised.
> ---
> That's better if it works -- restrict it to the user that runs it,
> but, excuse my ignorance, would that affect binding to ports below 1024?

Just give then CAP_NET_BIND

Alan

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Olaf Titz: "Re: [patch] repost of netfilter/NIPQUAD patches"
Previous message: Kurt Garloff: "max no of kernel params"
In reply to: Linda Walsh: "Re: Security in general (was Re: Proposal "LUID")"
Next in thread: yoann@mandrakesoft.com: "Re: Security in general (was Re: Proposal "LUID")"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sun Apr 23 2000 - 21:00:14 EST