diff options
| author | pjd <pjd@FreeBSD.org> | 2009-06-01 10:30:00 +0000 |
|---|---|---|
| committer | pjd <pjd@FreeBSD.org> | 2009-06-01 10:30:00 +0000 |
| commit | 5243d2d206ac372ee679c11bde715a4a4f2f93fd (patch) | |
| tree | ce73855429371a51ef92709203be008be66b6119 /sys/sys/priv.h | |
| parent | eb2d64c1bdd4159506f34e57ff8df73c843b7500 (diff) | |
| download | FreeBSD-src-5243d2d206ac372ee679c11bde715a4a4f2f93fd.zip FreeBSD-src-5243d2d206ac372ee679c11bde715a4a4f2f93fd.tar.gz | |
- Rename IP_NONLOCALOK IP socket option to IP_BINDANY, to be more consistent
with OpenBSD (and BSD/OS originally). We can't easly do it SOL_SOCKET option
as there is no more space for more SOL_SOCKET options, but this option also
fits better as an IP socket option, it seems.
- Implement this functionality also for IPv6 and RAW IP sockets.
- Always compile it in (don't use additional kernel options).
- Remove sysctl to turn this functionality on and off.
- Introduce new privilege - PRIV_NETINET_BINDANY, which allows to use this
functionality (currently only unjail root can use it).
Discussed with: julian, adrian, jhb, rwatson, kmacy
Diffstat (limited to 'sys/sys/priv.h')
| -rw-r--r-- | sys/sys/priv.h | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/sys/sys/priv.h b/sys/sys/priv.h index 3f1eb83..6f9f63b 100644 --- a/sys/sys/priv.h +++ b/sys/sys/priv.h @@ -374,6 +374,7 @@ #define PRIV_NETINET_IPSEC 503 /* Administer IPSEC. */ #define PRIV_NETINET_REUSEPORT 504 /* Allow [rapid] port/address reuse. */ #define PRIV_NETINET_SETHDROPTS 505 /* Set certain IPv4/6 header options. */ +#define PRIV_NETINET_BINDANY 506 /* Allow bind to any address. */ /* * IPX/SPX privileges. |
