• Eric W. Biederman's avatar
    ipv4: Allow unprivileged users to use per net sysctls · fd2d5356
    Eric W. Biederman authored
    Allow unprivileged users to use:
    /proc/sys/net/ipv4/icmp_echo_ignore_all
    /proc/sys/net/ipv4/icmp_echo_ignore_broadcasts
    /proc/sys/net/ipv4/icmp_ignore_bogus_error_response
    /proc/sys/net/ipv4/icmp_errors_use_inbound_ifaddr
    /proc/sys/net/ipv4/icmp_ratelimit
    /proc/sys/net/ipv4/icmp_ratemask
    /proc/sys/net/ipv4/ping_group_range
    /proc/sys/net/ipv4/tcp_ecn
    /proc/sys/net/ipv4/ip_local_ports_range
    
    These are occassionally handy and after a quick review I don't see
    any problems with unprivileged users using them.
    Signed-off-by: default avatar"Eric W. Biederman" <ebiederm@xmission.com>
    Signed-off-by: default avatarDavid S. Miller <davem@davemloft.net>
    fd2d5356
sysctl_net_ipv4.c 21.7 KB