security_privportserver.1   [plain text]

.\"Modified from man(1) of FreeBSD, the NetBSD mdoc.template, and mdoc.samples.
.\"See Also:
.\"man mdoc.samples for a complete listing of options
.\"man mdoc for the short list of editing options
.Dd Fri Sep 10 2004             \" DATE 
.Dt security_privportserver 1      \" Program name and manual section number 
.Os Darwin
.Sh NAME                 \" Section Header - required - don't modify 
.Nm security_privportserver
.\" The following lines are read in generating the apropos(man -k) database. Use only key
.\" words here as the database is built based on the words here and in the .ND line. 
.\" Use .Nm macro to designate other names for the documented program.
.Nd Authorization-based trampoline to acquire privileged ports
.Sh SYNOPSIS             \" Section Header - required - don't modify
.Sh DESCRIPTION          \" Section Header - required - don't modify
is used by the Authorization framework call AuthorizationBindPrivilegedPort() to allow
a process to bind to a privileged port
without requiring the client application to run as root.  The tool will acquire
the requested ports if the client is granted system.privilege.port.connect
and system.privilege.port.accept
rights in a Security Authorization evaluation.
This command is not intended to be invoked directly.
.Bl -tag -width -indent
.It Pa /etc/authorization
The authorization database can be configured to allow or disallow the use of this function.
was first introduced in Mac OS X version 10.3 (Panther).  
.An "Perry Kiehtreiber"