modify kernel to accept listen <1023 not uid=0 ?

Joerg Sonnenberger joerg at britannica.bec.de
Sun Aug 1 23:50:14 PDT 2004


On Sat, Jul 31, 2004 at 09:27:54AM +0200, rmkml wrote:
> Hi,
> 
> Historicaly,
> 
> BSD not accept listen <1023
> 
> only uid=0 !
> 
> Possible accept change this ?

If you want to implement an optional ACL for ports, which allows delegating
specific ports to a specific group (!), that would be fine for me.

It should be fast enough to not effect normal speed and the representation
of the ACL should not need 64k*4 byte memory. E.g. a two stage directory
similiar to the page table should be fine.

Changes should work by assigning net.inet.portacl.%d the group id and sysctl
should at least listen the !-1 groups (which means no group set).

Joerg

> Regards
> 
> Rmkml at xxxxxxxxxx





More information about the Kernel mailing list