On Sep 15, 2020, at 10:05 AM, Barry Scott <barry.scott@forcepoint.com> wrote:

We do this so that we can open priv'ed ports that the children will share.
We drop priv's after the priv'ed ports are opened.

A better way to do this might be to use something like the systemd activation endpoint, so you never need privileges in your code in the first place:

https://twistedmatrix.com/documents/current/core/howto/systemd.html#socket-activation

-glyph