Lower Process Capabilities
drago01
drago01 at gmail.com
Tue Jul 28 20:43:15 UTC 2009
On Tue, Jul 28, 2009 at 10:11 PM, Chris Adams<cmadams at hiwaay.net> wrote:
> Once upon a time, Bill McGonigle <bill at bfccomputing.com> said:
>> Doesn't SELinux already support allowing non-root users to have access
>> to low-numbered ports?
>
> AFAIK SELinux introduces additional controls and does not replace or
> override existing controls. I'm pretty sure non-root still can't
> directly listen on a low-numbered port.
Selinux can only restrict access but not grant any privileges.
More information about the fedora-devel-list
mailing list