Andrew Lentvorski wrote:
So, when is Linux going to finally drop the stupid requirement that you
need to be *root* to bind to a port less than 1024?
Without that requirement, pretty much every root compromise disappears.
That is a good question. ISTR there was a very good reason for requiring
root to bind below 1024. Perhaps it goes back to identd etc. and being
able to trust root on remote boxes. Clearly that has gone away. But for
most exploits these days they really aren't interested in root. They are
interested in getting control of your box no matter what the uid is
because they just want to send spam or set up a fishing site. So while
it might be nice to get rid of the root requirement to bind below 1024 I
don't think it would improve security much in practice.
--
Tracy R Reed Read my blog at http://ultraviolet.org
Key fingerprint = D4A8 4860 535C ABF8 BA97 25A6 F4F2 1829 9615 02AD
Non-GPG signed mail gets read only if I can find it among the spam.
--
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
