- Description has changed:
Diff:
~~~~
--- old
+++ new
@@ -1,4 +1,4 @@
-IANA assigned TCP ports 323 and 324 for rpki-rtr, which means that root
privileges are required to listen. For improved security, RPSTIR should drop
root privileges after `bind()`ing.
+IANA assigned TCP ports 323 and 324 for rpki-rtr, which means that root
privileges are required to listen. For improved security, RPSTIR's rpki-rtr
daemon should drop root privileges after `bind()`ing.
The UID to drop to should be configurable, defaulting to `nobody` or the main
`rpstir` user.
~~~~
---
** [tickets:#13] drop root privileges at startup**
**Status:** unread
**Created:** Mon Jun 01, 2015 07:40 PM UTC by Richard Hansen
**Last Updated:** Mon Jun 01, 2015 07:40 PM UTC
**Owner:** nobody
IANA assigned TCP ports 323 and 324 for rpki-rtr, which means that root
privileges are required to listen. For improved security, RPSTIR's rpki-rtr
daemon should drop root privileges after `bind()`ing.
The UID to drop to should be configurable, defaulting to `nobody` or the main
`rpstir` user.
Starting points:
* `bin/rpki-rtr/main.c`
* `lib/config/config.h` (for configurability)
---
Sent from sourceforge.net because rpstir-devel@lists.sourceforge.net is
subscribed to https://sourceforge.net/p/rpstir/tickets/
To unsubscribe from further messages, a project admin can change settings at
https://sourceforge.net/p/rpstir/admin/tickets/options. Or, if this is a
mailing list, you can unsubscribe from the mailing list.
------------------------------------------------------------------------------
_______________________________________________
rpstir-devel mailing list
rpstir-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/rpstir-devel
