On 14 Sep 2002, Mr. Tomcat wrote: > I am doing some experimentation and trying to change the range of > privileged ports in the kernel, so I could make it more restrictive > (only root can bind to ports < 10000) or less restrictive (any user can > bind to any port). It seems like there should be a constant defined in > a .h file somewhere which controls this, but I can't find it. I found > in /usr/include/netinet/in.h the constant IPPORT_RESERVED = 1024 but I > can't find that anywhere in the kernel. Can anyone point me to the > right file? > > Thanks! It's PROT_SOCK macro, defined in include/net/sock.h, and used in net/ipv4/af_inet.c and net/ipv6/af_inet6.c. (Look for CAP_NET_BIND_SERVICE) -- Philippe Biondi <biondi@ cartel-securite.fr> Cartel Sécurité Security Consultant/R&D http://www.cartel-securite.fr Phone: +33 1 44 06 97 94 Fax: +33 1 44 06 97 99 PGP KeyID:3D9A43E2 FingerPrint:C40A772533730E39330DC0985EE8FF5F3D9A43E2 - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
