> > On Tue, 24 Apr 2001, Mohammad A. Haque wrote:
> > > Correct. <1024 requires root to bind to the port.
> > ... And nothing says that it should be done by daemon itself.
>
> Or that you shouldnt let inetd do it for you
> And that you shouldn't drop the capabilities except that bind
>
> It is possible to implement the entire mail system without anything running
> as root but xinetd.
>
Qmail does exactly this afik.
I've always found the root < 1024 to be quite limmited and find myself
wishing I could assign permissions based on ip/port.
Gerhard
-- Gerhard Mack<>< As a computer I find your faith in technology amusing.
- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/