[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Privileged Port Puzzle

On Fri, Mar 11, 2005 at 01:40:49PM +0100, Juergen Salk wrote:
> Most services (like apache, e.g.) follow a different approach:
> They have to be run by root initially, and drop privileges as 
> soon as they have done binding their privileged ports. However, 
> this is obviously not the way imagectn is supposed to work. 

The other primary alternative is a SUID wrapper that opens the specified
port, and hands it over to the application which runs without SUID
privileges. However, that may not be the cleanest way; another response
in this thread has already covered the more tightly integrated method of
dealing with this.
Joel Aelwyn <fenton@debian.org>                                       ,''`.
                                                                     : :' :
                                                                     `. `'

Attachment: signature.asc
Description: Digital signature

Reply to: