Re: allowing ordinary users to open privileged ports
From: David Meissner (dmeissner_at_jetcity.com)
Date: Sun, 05 Sep 2004 20:58:52 -0700 To: <firstname.lastname@example.org>, <email@example.com>
As far as I know there is no way to allow a regular user to open a port <
1024. The request from the client doesn't make a lot of sense - perhaps it
could be explained to the client that it is more secure to run the Java
application on a non-privileged port. Or the application could be recoded
to do something like what the Apache web server does - start as root to
bind to the port, then switch to a non-root user. I have no idea if that is
possible for a Java app.
Or, maybe sudo could be used to allow a regular user to start the
application - in this case though, the application would still be running
At 10:40 PM 9/2/2004 +0800, randy calma repasa wrote:
> Has anyone in the list successfully tried allowing ordinary
>users to open privileged (< 1024) ports? We have a solaris 8 on sparc
>machine running an (java) application that normally uses ports > 1024;
>however a client requested the application to use privileged ports
> This resulted in the application failing to start as the port
>that the application was trying to bind to was < 1024. I've looked for
>methods/workarounds to allow this but have so far come up empty.
> I would appreciate any experiences or links that the list could
>point me to.
> Thank you very much and best regards.