Socket restriction feature request
Posted: Thu Aug 01, 2013 11:39 amHi,
as far as i know, the socket restrictions in grsec (inside the kernel) are based on the group id at the moment.
Is it possible to compile a whitelist with pathnames of trusted progs into the kernel, to deny socket creation to the rest?
Best regards (and thx for this great project)
hgl
as far as i know, the socket restrictions in grsec (inside the kernel) are based on the group id at the moment.
Is it possible to compile a whitelist with pathnames of trusted progs into the kernel, to deny socket creation to the rest?
Best regards (and thx for this great project)
hgl