Date: Wed, 26 Mar 1997 12:45:41 -0600 (CST) From: "Thomas H. Ptacek" <tqbf@enteract.com> To: adrian@obiwan.aceonline.com.au (Adrian Chadd) Cc: dg@root.com, tqbf@enteract.com, adrian@deathstar.ml.org, freebsd-security@FreeBSD.ORG Subject: Re: Privileged ports... Message-ID: <199703261845.MAA28107@enteract.com> In-Reply-To: <Pine.BSF.3.95q.970326224449.29293A-100000@obiwan.aceonline.com.au> from "Adrian Chadd" at Mar 26, 97 10:50:30 pm
next in thread | previous in thread | raw e-mail | index | archive | help
> How about assigning each port number a userid which can bind with the > port alongside root? > Should be easy enough to implement, and powerful enough to not need suid > root binaries to bind to priv'ed ports. What does this win you? It is easy enough to do, especially if you can require those UIDs to be contiguous (just add an OID to net.inet.ip for the "start" of the range of UIDs that map to reserved ports), but it also seems to waste a lot of UIDs. ---------------- Thomas Ptacek at EnterAct, L.L.C., Chicago, IL [tqbf@enteract.com] ---------------- "If you're so special, why aren't you dead?"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199703261845.MAA28107>