On Tue, 24 Apr 2001, Alan Cox wrote:
> > On Tue, 24 Apr 2001, Mohammad A. Haque wrote:
> > > Correct. <1024 requires root to bind to the port.
> > ... And nothing says that it should be done by daemon itself.
> Or that you shouldnt let inetd do it for you
> And that you shouldn't drop the capabilities except that bind
> It is possible to implement the entire mail system without anything running
> as root but xinetd.
Qmail does exactly this afik.
I've always found the root < 1024 to be quite limmited and find myself
wishing I could assign permissions based on ip/port.
-- Gerhard Mack
<>< As a computer I find your faith in technology amusing.
- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to email@example.com More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Mon Apr 30 2001 - 21:00:11 EST