TCP/IP bindings

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Darren Reed: "Re: Proposed /proc/stat addition"
• Previous message: Keith Owens: "Re: Timings for optimised poll(2)"
• Next in thread: Dean Gaudet: "Re: ioevent queues (was Re: Proposed new poll2() syscall)"
• Reply: Dean Gaudet: "Re: ioevent queues (was Re: Proposed new poll2() syscall)"

I need to know if there is a way to restrict users shell programs to
only be able to use the IP addresses which they own. In other words,
some users on my box are binding their shell programs to IP addresses
that they don't own. I have many "lo" routing and arp entries that
allow my box to use to many IP addresses. I just need edit something in
the kernel that will only allow certain users to bind their programs to
certain IP addresses. I'm fairly certain this can be done because I
know that there is a limit on the port number that users can bind their
programs to (i.e. root can bind stuff to a port < 1000 but no one else
can). Please let me know if anyone has done anything with this, because
I believe it would be very useful when implemented.

-Jeff Hansen

• Next message: Darren Reed: "Re: Proposed /proc/stat addition"
• Previous message: Keith Owens: "Re: Timings for optimised poll(2)"
• Next in thread: Dean Gaudet: "Re: ioevent queues (was Re: Proposed new poll2() syscall)"
• Reply: Dean Gaudet: "Re: ioevent queues (was Re: Proposed new poll2() syscall)"