search for: port_high

...ing squid with mac_portacl, but i have problem while binding squid to port 80. Am i missed something? Here is my mac_portacl variables: # sysctl security.mac.portacl. security.mac.portacl.enabled: 1 security.mac.portacl.suser_exempt: 1 security.mac.portacl.autoport_exempt: 1 security.mac.portacl.port_high: 1023 security.mac.portacl.rules: uid:100:tcp:80 And squid user info: # grep squid /etc/passwd squid:*:100:100:squid caching-proxy pseudo user:/usr/local/squid:/usr/sbin/nologin Also here is cache.log: 2006/10/20 09:55:59| Starting Squid Cache version 2.5.STABLE14 for i386-portbld-freebsd6.1......

Hello, I really like the idea behind mac_portacl but I find it difficult to use it because of one issue. When an unprivileged program binds to high automatic port with a call to bind(2) and port number set to 0 the system chooses the port to bind to itself. This mechanismus is used by number of programs, most commonly by ftp clients in active mode. Unfortunately this 0 is checked by the