Re: caps in elf, next itteration (the hack get's bigger)

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: T. S. Horsnell: "Re: 2.2.5 kernel/routing/firewalling"
• Previous message: alex.buell@tahallah.demon.co.uk: "Re: Caps - did not we have enough discussion already? [was Re: caps"
• Maybe in reply to: David L. Parsley: "caps in elf, next itteration (the hack get's bigger)"
• Next in thread: Albert D. Cahalan: "Re: caps in elf, next itteration (the hack get's bigger)"

But you don't need capabilities for named at all. Named could be
secured if there's a port-device-map which describes who (uid)
may use which port. Named would get a port, mail another and so
on.

There was a patch for this around (called sockfs). (But
capabilities are a good thing and should be implemented.
Only named doesn't need it.)

Andi

-- 
      Andreas Barth  <aba@muenchen.pro-bahn.org>  PGP-Key auf Anforderung
======PGP-Fingerabdruck  DC F1 85 6D A6 45 9C 0F  3B BE F1 D0 C5 D1 D9 0C======
      Nomic kann nur der gewinnen, der nicht mitspielt.        Utz Pflock

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

• Next message: T. S. Horsnell: "Re: 2.2.5 kernel/routing/firewalling"
• Previous message: alex.buell@tahallah.demon.co.uk: "Re: Caps - did not we have enough discussion already? [was Re: caps"
• Maybe in reply to: David L. Parsley: "caps in elf, next itteration (the hack get's bigger)"
• Next in thread: Albert D. Cahalan: "Re: caps in elf, next itteration (the hack get's bigger)"