Re: Bug#427605: ITP: privbind -- Allow unprivileged apps to bind to a privileged port
Russell Coker wrote:
> On Tuesday 05 June 2007 16:52, Shachar Shemesh <shachar@debian.org> wrote:
>
>> Package: wnpp
>> Severity: wishlist
>> Owner: Shachar Shemesh <shachar@debian.org>
>>
>
> What benefits does this offer over authbind which has been in Debian for ages?
>
>
It uses a (I think) much more secure mode of operation. In particular:
- No SUID executables
- User who launches the daemon must be root
- Privileges go down, never up
And, as a result:
- No global configuration necessary (though one will probably be added
later if necessary).
Shachar
Reply to: