Date: Thu, 23 Jun 2005 17:23:23 +0400 (MSD) From: Maxim Konovalov <maxim@macomnet.ru> To: Bruce M Simpson <bms@spc.org> Cc: freebsd-net@freebsd.org, Mrad James Deane <xtremejames183@msn.com> Subject: Re: www user than root Message-ID: <20050623172219.K19717@mp2.macomnet.net> In-Reply-To: <20050622151406.GG791@empiric.icir.org> References: <BAY11-F12EF48C9216082BFB35A7B9CEB0@phx.gbl> <20050622151406.GG791@empiric.icir.org>
next in thread | previous in thread | raw e-mail | index | archive | help
[...] > You could do something like this in FreeBSD 5-STABLE by hacking the > in_pcbbind_setup() function in src/sys/netinet/in_pcb.c to not just > call suser_cred(), but to instead perform a group check, by calling > groupmember(some_privileged_socket_group, cred). mac_portacl(4) -- Maxim Konovalov
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050623172219.K19717>