Uploaded image for project: 'Traffic Server'
  1. Traffic Server
  2. TS-338

Use POSIX capabilities instead of user ID switching.

    XMLWordPrintableJSON

Details

    Description

      Instead of switching the user id around (via seteuid() and the like), use POSIX capabilities to retain the appropriate privileges as a non-root user.

      This will have to be done as an optional feature because while modern Linux kernels are compliant, older kernels may not be and the compliance status of other operating systems (e.g. BSD) is unclear.

      Attachments

        1. ts-338-trunk-patch.txt
          14 kB
          Alan M. Carroll

        Issue Links

          is depended upon by

          Improvement - An improvement or enhancement to an existing feature or task. TS-291 Enable transparent forward proxying

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

          Activity

            People

              mturk@apache.org Mladen Turk
              amc Alan M. Carroll
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: