Netacl (cont)

• Checks to see if source of connection is permitted service

  • If source is permitted service the real service process is invoked
  • If source is denied service netacl exits and terminates connection

• Includes ability to chroot or set user-id of server process prior to invoking it

Previous slide

Next slide

Back to first slide

View graphic version