Casper.Dik at sun.com wrote: >> Further to what Seb said, in general, loopback sockets are treated as an >> IPC mechanism and may be used by any random set of applications that have >> no interest in actually using the network. That is, not having the >> proposed NET_ACCESS privilege may cause random applications to fail even >> though they never attempted to access the network. Is this really the >> desired behavior? > > Yes. I wouldn't call it random; they're still INET sockets. The use is > limited and specific for containing users.
I think that still leaves meem's question unanswered. Isn't whether the application uses loopback sockets or (say) SysV message queues merely an implementation detail? Why would one means of purely local communication among cooperating processes be allowed and the other denied? What's the principle involved? -- James Carlson 42.703N 71.076W <carlsonj at workingcode.com>
