Subject: Re: tightening control on socket bind()ing
To: None <>
From: Perry E. Metzger <>
List: tech-security
Date: 03/09/1999 19:49:07
Luke Mewburn <> writes:
> 4. use the solution that FreeBSD use (derived from the OpenBSD
>    solution): prevent a bind if another socket on the same port is
>    bound, irregardless of whether SO_REUSE{ADDR,PORT} is set, if
>    the following is not true:
> 	* the new bind() is being done by euid==0, or
> 	* the new bind() is of a different euid to the existing socket
> after discussion with a few other people, it appears that `4.' is
> probably the sanest/easiest solution; it requires no code modification
> of existing daemons, and shouldn't affect.

I like. One favor: please document this properly when you are
done. There is no documentation on any of this behavior right now,
which is Very Bad.