From owner-freebsd-security Mon Jun 21 5:21:11 1999 Delivered-To: freebsd-security@freebsd.org Received: from ns1.yes.no (ns1.yes.no [195.204.136.10]) by hub.freebsd.org (Postfix) with ESMTP id 5108114C8C for ; Mon, 21 Jun 1999 05:21:06 -0700 (PDT) (envelope-from eivind@bitbox.follo.net) Received: from bitbox.follo.net (bitbox.follo.net [195.204.143.218]) by ns1.yes.no (8.9.1a/8.9.1) with ESMTP id OAA28277; Mon, 21 Jun 1999 14:21:05 +0200 (CEST) Received: (from eivind@localhost) by bitbox.follo.net (8.8.8/8.8.6) id OAA81536; Mon, 21 Jun 1999 14:21:04 +0200 (MET DST) Date: Mon, 21 Jun 1999 14:21:04 +0200 From: Eivind Eklund To: Darren Reed Cc: dev.null@funbox.demon.co.uk, freebsd-security@FreeBSD.ORG Subject: Re: proposed secure-level 4 patch Message-ID: <19990621142104.X63035@bitbox.follo.net> References: <376D27ED.0180@funbox.demon.co.uk> <199906210518.PAA15232@cheops.anu.edu.au> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.1i In-Reply-To: <199906210518.PAA15232@cheops.anu.edu.au>; from Darren Reed on Mon, Jun 21, 1999 at 03:18:34PM +1000 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, Jun 21, 1999 at 03:18:34PM +1000, Darren Reed wrote: > How about a bit vector defining which ports can and can't be bound from > non-root below 1024 ? > > a 256 byte array doesn't sound too bad does it ? Why haven't I seen the magic words of 'Merge from OpenBSD' in a commit related to this yet? ;-) (OpenBSD has support for this, and the patches didn't look scarily large) Eivind. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message