[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#427605: ITP: privbind -- Allow unprivileged apps to bind to a privileged port



Russell Coker wrote:
> On Tuesday 05 June 2007 16:52, Shachar Shemesh <shachar@debian.org> wrote:
>   
>> Package: wnpp
>> Severity: wishlist
>> Owner: Shachar Shemesh <shachar@debian.org>
>>     
>
> What benefits does this offer over authbind which has been in Debian for ages?
>
>   
It uses a (I think) much more secure mode of operation. In particular:
- No SUID executables
- User who launches the daemon must be root
- Privileges go down, never up
And, as a result:
- No global configuration necessary (though one will probably be added
later if necessary).

Shachar



Reply to: