On Thu, Nov 14, 2013 at 06:50:33AM +0100, Piotr Grzybowski wrote: > My main point is: this patch means that every user that has access to > who-knows-how restricted shell can open listen sockets, and unless > someone thought of using grsecurity to deny access to bind(2) it is > unrestricted.
Restricted shells are a joke.
