On 24 Sep 2010, at 19:15, Will Fiveash wrote: > Beyond what others have responded with I suggest you read: > http://developers.sun.com/solaris/articles/program_privileges.html > > Using Solaris privileges and roles/RBAC properly you can grant a server > app the privilege to open a restricted network port without having to > run as root (see PRIV_NET_PRIVADDR in the privileges.5 man page).
I agree, we really should be doing more than seteuid() :-) Rich's doc *does* make it look fairly straightforward... Cheers, Chris _______________________________________________ security-discuss mailing list [email protected]
