> I have been playing around with openbsd portmap. I am confused about > the fact that if a program is registered above port 1024 any local > user may remove it, right?
Yes. > Does it sound good from a security point of view? It's not that great, but unfortunately there is no solution to this problem. It is a bad design. I've spent a lot of time working on RPC, making it more secure. There are many other restrictions for safety in our RPC and portmap code, but there is no real solution to this.
