Socket Restrictions by User/Group

Discuss usability issues, general maintenance, and general support issues for a grsecurity-enabled system.

Socket Restrictions by User/Group

Postby frank-n-f » Sat Aug 23, 2003 9:14 am

Is it possible to allow a specific user such as the one apache runs under to ONLY be allowed to open a port such as 80 and/or 443 to prevent a backdoor from being installed if a bad guy exploited the service.

If so how do I do it?
frank-n-f
 
Posts: 2
Joined: Mon May 06, 2002 6:24 am

Postby Sleight of Mind » Sun Aug 24, 2003 4:56 am

you can do this using the ACL system, read the documentation that comes with it for more information.
Sleight of Mind
 
Posts: 92
Joined: Tue Apr 08, 2003 10:41 am


Return to grsecurity support