Date: Fri, 3 Jul 1998 03:51:27 +1000 (EST) From: Darren Reed <avalon@coombs.anu.edu.au> To: rotel@indigo.ie Cc: easmith@beatrice.rutgers.edu, dg@root.com, security@FreeBSD.ORG, njs3@doc.ic.ac.uk, dima@best.net, abc@ralph.ml.org, tqbf@secnet.com Subject: Re: bsd securelevel patch question Message-ID: <199807021752.KAA05020@hub.freebsd.org> In-Reply-To: <199807021331.OAA00656@indigo.ie> from "Niall Smart" at Jul 2, 98 02:31:18 pm
next in thread | previous in thread | raw e-mail | index | archive | help
In some mail from Niall Smart, sie said: > > Whats wrong with a /dev/socket/tcp/XYZ acl type scheme? If the > process has permission to read /dev/socket/tcp/83 then they can > bind to port 83, you could make it a procfs type filesystem so all > the ACL information was in memory for speed. Then you've got to > save/restore state though. you already have /dev/socket/tcp/XYZ using portals. why reinvent that wheel again ? you (and others) seem very keen on doing this. maybe you should do some more research about what's around now before taking this much further. darren To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199807021752.KAA05020>