Lower Process Capabilities

Chris Adams cmadams at hiwaay.net
Tue Jul 28 20:11:26 UTC 2009


Once upon a time, Bill McGonigle <bill at bfccomputing.com> said:
> Doesn't SELinux already support allowing non-root users to have access
> to low-numbered ports?

AFAIK SELinux introduces additional controls and does not replace or
override existing controls.  I'm pretty sure non-root still can't
directly listen on a low-numbered port.
-- 
Chris Adams <cmadams at hiwaay.net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.




More information about the fedora-devel-list mailing list