| Both sides previous revisionPrevious revision | Next revisionBoth sides next revision |
| faq:nix [2018/02/13 12:41] – [Ports Below 1024 Without Root On Linux] Add reference to Linux non-root page deuce | faq:nix [2018/02/13 12:44] – Removed the section I added on binding ports below 1024 on Linux, since there's already a howto page about that. nightfox |
|---|
| * [[#Disk space|How much disk space is required]]? | * [[#Disk space|How much disk space is required]]? |
| * [[#TermType|What does an ''unknown terminal'' error indicate]]? | * [[#TermType|What does an ''unknown terminal'' error indicate]]? |
| * [[#ports_below_1024_without_root_on_linux|How can I bind to ports below 1024 without being root on Linux]]? | |
| | |
| ===== Flavors ===== | ===== Flavors ===== |
| |
| To elaborate, [[util:SBBSecho]] uses ''tempnam'' for a specific purpose, which ''mkstemp'' does not do. Additionally ''mkstemp'' is not available in all the C libraries for all the platforms for which Synchronet is built. The //dangers// of ''tempnam'' do not apply to SBBSecho's use of the function. | To elaborate, [[util:SBBSecho]] uses ''tempnam'' for a specific purpose, which ''mkstemp'' does not do. Additionally ''mkstemp'' is not available in all the C libraries for all the platforms for which Synchronet is built. The //dangers// of ''tempnam'' do not apply to SBBSecho's use of the function. |
| |
| ===== Ports Below 1024 Without Root On Linux ===== | |
| **Question:**\\ | |
| How can I bind to network ports below 1024 as a non-root user on Linux? | |
| |
| **Answer:**\\ | |
| By default, Linux does not allow non-root processes to bind to ports below 1024. This was done as a security measure, although some argue that the reasons for this are obsolete. It is often a bad practice to run processes as root unless it's really necessary to do so, and perhaps even more so with an Internet-accessible server. Thus, it is often desirable to run servers on standard ports (below 1024) as a non-root user. You can do so with the setcap command. For example:\\ | |
| setcap cap_net_bind_service=+ep /sbbs/exec/sbbs | |
| |
| For more information, see the following:\\ | |
| [[howto:linux_non-root]]\\ | |
| [[https://stackoverflow.com/questions/413807/is-there-a-way-for-non-root-processes-to-bind-to-privileged-ports-on-linux|StackOverflow: Is there a way for non-root processes to bind to “privileged” ports on Linux?]]\\ | |
| [[https://www.jumpingbean.co.za/blogs/mark/run-application-port-below-1024-linux|How to bind to ports below 1024 without being root on Linux?]]\\ | |
| [[https://www.staldal.nu/tech/2007/10/31/why-can-only-root-listen-to-ports-below-1024|Why can only root listen to ports below 1024?]] | |
| |
| ===== See Also ===== | ===== See Also ===== |
