[prev in list] [next in list] [prev in thread] [next in thread] 

List:       netfilter-devel
Subject:    Re: [PATCH] owner-socketlookup update for 2.6.12-rc3
From:       Patrick Schaaf <bof () bof ! de>
Date:       2005-04-27 6:55:09
Message-ID: 20050427065509.GB5828 () oknodo ! bof ! de
[Download RAW message or body]

Completely different question re semantics: what about listening sockets,
and the incoming connection requests to them?

How would the initial SYN be classified by a LOCAL_IN owner match?
Consider the case that a uid:0 process created the listening socket,
then dropped to uid:1234 and execed a different binary.

best regards
  Patrick

[prev in list] [next in list] [prev in thread] [next in thread]