Principle of least privilege


The RDE does not need any special privileges at all
so it runs as _bgpd:_bgpd, chrooted to /var/empty

The SE needs to bind to tcp 179/tcp, requires root

the parent needs root to modify the kernel routing table, IPsec flows etc