Re: [RFC] Allowing non-root to get iptables info?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Feb 27 2008 15:39, mouss wrote:
> on a server where are allowed to run commands, but we don't want them to know
> more than they should, I am not sure one wants them to see the rules. call it
> security by obscurity if you like, but some people may want this. I guess this
> is what Jozef meant by compatibility (is it "least surprise"?).

=>
>> > I'd be more happy with a module parameter and/or proc switch by which this
>> > new feature could be enabled.

So just `modprobe ip_tables ipfreely=0` on your systems
once that option has been added.
-
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html

[Index of Archives]     [Netfitler Users]     [LARTC]     [Bugtraq]     [Yosemite Forum]

  Powered by Linux