Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
ronjakoi
on Sept 27, 2024
|
parent
|
context
|
favorite
| on:
Attacking UNIX Systems via CUPS
It's common practice to open the socket to start listening on the <1024 port, then drop the root privileges and continue as a different user.
cpach
on Sept 27, 2024
[–]
On a modern Linux system, it’s better to use the CAP_NET_BIND_SERVICE capability instead. Then you don’t need to start the process as root at all.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
