Re: Possibility to adjust the only-root-can-bind-to-port-under-1024 limit

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]


On Tue, 20 Nov 2007 11:14:59 +0100
Mikael Ståldal  <[email protected]> wrote:

> In Linux you have to be root in order to listen to TCP or UDP ports below 1024 (the 
> well-known ports). As far as I know, this limit is hardcoded in the kernel.
> In some cases, this limit do more harm than good, so it would be nice to be able to adjust it.

The proper way to enable port <= 1024 binding support is adding CAP_NET_BIND_SERVICE to the process capability set, e.g. by using file-system capabilities.

Attachment: signature.asc
Description: PGP signature

[Index of Archives]     [Kernel Newbies]     [Netfilter]     [Bugtraq]     [Photo]     [Stuff]     [Gimp]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Video 4 Linux]     [Linux for the blind]     [Linux Resources]
  Powered by Linux