> > I've read through and tested the patch, and is seems like a reasonable
> > idea. Basically, it adds a flag to sockets which have been created
> > via an accept() and then adds a new getcred_outgoing sysctl which
> > works just like getcred but returns EPERM it is not a outgoing
> > socket.
>
< said:
> I've read through and tested the patch, and is seems like a reasonable
> idea. Basically, it adds a flag to sockets which have been created
> via an accept() and then adds a new getcred_outgoing sysctl which
> works just like getcred but returns EPERM it is not a outgoing
> socket.
I
In light of the chat on bugtraq about using ident services "backwards"
to find out who daemons are running as, I had a look at PR 21998:
http://www.FreeBSD.org/cgi/query-pr.cgi?pr=21998
I've read through and tested the patch, and is seems like a reasonable
idea. Basically, it adds a fla