Re: Bug#427605: ITP: privbind -- Allow unprivileged apps to bind to a privileged port
Russell Coker wrote:
> On Tuesday 05 June 2007 16:52, Shachar Shemesh <email@example.com> wrote:
>> Package: wnpp
>> Severity: wishlist
>> Owner: Shachar Shemesh <firstname.lastname@example.org>
> What benefits does this offer over authbind which has been in Debian for ages?
It uses a (I think) much more secure mode of operation. In particular:
- No SUID executables
- User who launches the daemon must be root
- Privileges go down, never up
And, as a result:
- No global configuration necessary (though one will probably be added
later if necessary).