> > Several system administrator prefer to run their server as an user
> > in case it is compromised.
> ---
> That's better if it works -- restrict it to the user that runs it,
> but, excuse my ignorance, would that affect binding to ports below 1024?
Just give then CAP_NET_BIND
Alan
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Sun Apr 23 2000 - 21:00:14 EST