I don't see any need for this. You can run a java service on ports < 1024 without being root with portmappers, proxies, iptables and several other tools, that let sysadmins open well defined holes without compromising the security.
In the long term I would like to see ACL's in the os, that define something like 'Allow binary y that is started by user x to bind to port z' > -----Original Message----- > From: Lawrence, Gabriel [mailto:[EMAIL PROTECTED] > Sent: Friday, July 18, 2003 11:13 PM > To: Tomcat Users List > Subject: RE: Running Tomcat as Non-Root > > > It's a java problem as the OSes that block access to <1024 ports give > native code api's to open these ports and then loose the root privs. > Java should allow those of us who are interested in running java > services to have the option to take advantage of this. > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
