Hacker News new | comments | show | ask | jobs | submit login

I don't think you'd be very happy if the imap server crashed, a random user restarted it running as them, and then logged all the passwords entered...

No, I wouldn't. But so what? Putting trust in a service just because it's running on a low-numbered port is ridiculous.

If we want trustable services, there are ways to do that, although with mixed track records to be sure.

To try to create trustable services by assigning a range of ports to the superuser is clumsy in the extreme, and has all sorts of bad side effects.

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | DMCA | Apply to YC | Contact