Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
howto:linux_non-root [2019/04/05 14:16] – Reference to systemd page, as that handles this automatically, as well as commenting out User/Group in sbbs.ini va7aqd | howto:linux_non-root [2020/11/24 02:01] – [setcap] Add use of getcap to confirm success, use realpath to be sure we're pointing to the target of symlinks digital man | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | ====== Linux Non-root ====== | + | ====== |
===== setcap ===== | ===== setcap ===== | ||
- | '' | + | '' |
- | < | + | $ sudo / |
- | + | ||
- | This must be ran on the executable file itself (if ''/ | + | |
- | sudo setcap ' | + | |
- | + | ||
- | When using this method, be sure the User/Group settings in sbbs.ini are **commented out**! | + | |
- | + | ||
- | This will need to be re-ran any time the binary is rebuilt (and remember to properly reference '' | + | |
- | + | ||
- | This requires that the [[https:// | + | |
+ | This will need to be re-ran any time the binary is rebuilt and can be automated by adding the '' | ||
+ | $ make RELEASE=1 setcap symlinks | ||
+ | | ||
+ | To confirm the bind capabilities were set successfully, | ||
+ | $ sudo getcap `realpath / | ||
+ | / | ||
===== authbind ===== | ===== authbind ===== | ||
Line 23: | Line 20: | ||
Configure it to grant access to the relevant ports, e.g. to allow 80, 21, 23,25, 110, etc 443 from all users and groups: | Configure it to grant access to the relevant ports, e.g. to allow 80, 21, 23,25, 110, etc 443 from all users and groups: | ||
- | sudo touch / | + | |
- | sudo touch / | + | |
and so forth for all ports you are using below 1025 ... | and so forth for all ports you are using below 1025 ... | ||
- | sudo chmod 777 / | + | |
- | sudo chmod 777 / | + | |
and so forth for all ports you are using below 1025 | and so forth for all ports you are using below 1025 | ||
Line 37: | Line 34: | ||
Now execute your command via authbind (optionally specifying --deep or other arguments, see the man page): | Now execute your command via authbind (optionally specifying --deep or other arguments, see the man page): | ||
- | sudo authbind --deep / | + | |