Il giorno lun, 23/04/2007 alle 14.38 -0400, Gerhard Mack ha scritto: > On Mon, 23 Apr 2007, Roberto De Ioris wrote: > > Hi all, > > this is a very simple module that allows bind() to tcp/udp port (>=1024) > > only for the uids defined in a configfs tree. > > > > It is a first version, it only works for PF_INET sockets and makes no > > difference between tcp and udp (i am working on this) > > > > For (little) more info see > > > > http://projects.unbit.it/uidbind/ > > > > Patch attached is for vanilla 2.6.20.7 > > Is it possible to lock a range of ports to a uid? I think i can implement something like a configfs item named '8081-8090', instead of only '8081'. I will need to validate the range, but its not too difficult. > > Also, is it possible to lock a uid to one ip address? For example usera > can only bind to 10.0.0.23 while userb can only bind to 10.0.0.24. This is simple to add and i have already a patch for it. In the next few days i will post it. -- Roberto De Ioris http://unbit.it JID: [email protected] Wii: 2999 4476 3509 0964
Attachment:
signature.asc
Description: Questa =?ISO-8859-1?Q?=E8?= una parte del messaggio firmata digitalmente
- References:
- [ANNOUNCE] UidBind LSM 0.1
- From: Roberto De Ioris <[email protected]>
- Re: [ANNOUNCE] UidBind LSM 0.1
- From: Gerhard Mack <[email protected]>
- [ANNOUNCE] UidBind LSM 0.1
- Prev by Date: Re: [REPORT] cfs-v4 vs sd-0.44
- Next by Date: Pagecache: find_or_create_page does not call a proper page allocator function
- Previous by thread: Re: [ANNOUNCE] UidBind LSM 0.1
- Next by thread: Re: [ANNOUNCE] UidBind LSM 0.1
- Index(es):
 |