From aa6db091d0b86a39a7646dd3d54f49df5c40d324 Mon Sep 17 00:00:00 2001 From: Brian Wellington Date: Fri, 13 Apr 2001 06:26:26 +0000 Subject: [PATCH] mention that threads & setuid work with Linux 2.2.18. --- FAQ | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/FAQ b/FAQ index 42f7759e50..6476ddca2b 100644 --- a/FAQ +++ b/FAQ @@ -13,10 +13,10 @@ can on all other supported platforms. setuid() cannot be called before creating threads, since the server does not start listening on reserved ports until after threads have started. - In the 2.3.99-pre3 and newer kernels, the ability to preserve capabilities -across a setuid() call is present. This allows BIND 9 to call setuid() early, -while retaining the ability to bind reserved ports. This is a Linux-specific -hack. + In the 2.2.18 or 2.3.99-pre3 and newer kernels, the ability to preserve +capabilities across a setuid() call is present. This allows BIND 9 to call +setuid() early, while retaining the ability to bind reserved ports. This is +a Linux-specific hack. On a 2.2 kernel, BIND 9 does drop many root privileges, so it should be less of a security risk than a root process that has not dropped privileges.