vuurmuur daemon should not be running as root
|Reported by:||fredl||Owned by:||fredl|
We may only need CAP_NET_ADMIN but perhaps we should build using libiptc then as opposed to running iptables/iptables-restore as I'm not certain how capabilities translate to forked processes.
Change History (1)
Note: See TracTickets for help on using tickets.