Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to allow nonroot user to bind to port 80
Operating Systems Solaris How to allow nonroot user to bind to port 80 Post 76982 by Perderabo on Friday 1st of July 2005 09:39:55 PM
Old 07-01-2005
There may be an an option for you, but I hesitate to mention it. I found it because I am writing a script to manipulate the Solaris network drivers. I can't find any real documentation on it either. But the tcp driver has some tunable parameters that are accessible via ndd. The params you would need to look at can be found with:
# ndd -get /dev/tcp \? | grep priv
tcp_smallest_nonpriv_port (read and write)
tcp_extra_priv_ports (read only)
tcp_extra_priv_ports_add (write only)
tcp_extra_priv_ports_del (write only)

So you might be able to crank tcp_smallest_nonpriv_port down to 80. This also exposes 81 though 1024. You might be able to put some or all of these back with the other params. If you do try it, let us know how it goes.
 

9 More Discussions You Might Find Interesting

1. Linux

Unblock port 80 for none root user

Hi all, I am running an oracle application server but the problem is that the default port it is using is 7777 and if i want to make it port 80 i have to run the server as root which something i do not want to do. If i understand well to run on a port under 1024 the application needs root... (1 Reply)
Discussion started by: staind_art
1 Replies

2. Linux

resticting user to login using putty on port 21(ftp)

Hi, I am having small query and wheather it is possible ? that user can transfer the files using ftp client examples (filezilla) , but he can not use putty to login using ftp and run the commands, Regards, Manoj (2 Replies)
Discussion started by: manoj.solaris
2 Replies

3. Shell Programming and Scripting

Python: Bind to port 80 as root, then drop privileges?

I have written a small web server in Python, and now I would like to run it on port 80, but in order to be able to bind to a port below 1024 I need to have root privileges. I don't want to run the server as root, though. How can I bind to port 80 as root and then drop root privileges? Thankful... (0 Replies)
Discussion started by: Ilja
0 Replies

4. UNIX for Dummies Questions & Answers

permission to bind a socket to port 843?

I have written a flash socket security file server in PHP. The basic idea is that when Flash Player connects via socket to a server, the first thing it does is connect to port 843 and send a request for a 'socket policy file' by sending the string <policy-file-request/>. The problem I have is... (5 Replies)
Discussion started by: sneakyimp
5 Replies

5. Linux

How do I run HTTP server on port 80 using a non root user?

Hi experts, I want to run HTTP server on port 80, I learn from somewhere that it MUST not be run as root for security reason, how to do that? Thank you in advance! (14 Replies)
Discussion started by: kevintse
14 Replies

6. Solaris

How to enable Serial port on ILOM, when Network Port is enabled in parallel

Hi Everyone, In my environment, I have few T5220. On the iLOM Management Card, I have both Network and Serial port are cabled, I don't have any issues while I try to connect using Network Management port, but when I try to connect the serial port for the same server which is actually connected... (3 Replies)
Discussion started by: bobby320
3 Replies

7. Emergency UNIX and Linux Support

Script to check if user can bind, then output to file

Hi, I've been trying to find the answer with no luck. I'm hoping someone can help me. Here's what I need to do: Run a KSH script that will check: 1. Server (Client) Type (AIX 5.3, 6.1, SUSE, and HP-UX are the possibilities). 2. LDAP.cfg is configured correctly and the ldap client... (3 Replies)
Discussion started by: tekster2
3 Replies

8. Solaris

Cabling and adapters to communicate to service processor serial port from Windows PC with USB port.

Hello, I have an unloaded T5140 machine and want to access the ILOM for the first time and subsequently the network port after that., and then load Solaris 10 the final January 2011 build. The first part is what confuses me -the cabling. I am coming from a Windows machine (w/appropriate... (5 Replies)
Discussion started by: joboy
5 Replies

9. Solaris

How to find port number wwn of particular port on dual port HBA,?

please find the below o/p for your reference bash-3.00# fcinfo hba-port HBA Port WWN: 21000024ff295a34 OS Device Name: /dev/cfg/c2 Manufacturer: QLogic Corp. Model: 375-3356-02 Firmware Version: 05.03.02 FCode/BIOS Version: BIOS: 2.02; fcode: 2.01;... (3 Replies)
Discussion started by: sb200
3 Replies

LEARN ABOUT NETBSD

bindresvport

BINDRESVPORT(3) 					   BSD Library Functions Manual 					   BINDRESVPORT(3)

NAME

     bindresvport, bindresvport_sa -- bind a socket to a reserved privileged IP port

LIBRARY

     Standard C Library (libc, -lc)

SYNOPSIS

     #include <sys/types.h>
     #include <rpc/rpc.h>

     int
     bindresvport(int sd, struct sockaddr_in *sin);

     int
     bindresvport_sa(int sd, struct sockaddr *sa);

DESCRIPTION

     bindresvport() and bindresvport_sa() are used to bind a socket descriptor to a reserved privileged IP port, that is, a port number in the
     range 0-1023.  The routine returns 0 if it is successful, otherwise -1 is returned and errno set to reflect the cause of the error.

     If sin is a pointer to a struct sockaddr_in then the appropriate fields in the structure should be defined.  Note that sin->sin_family must
     be initialized to the address family of the socket, passed by sd.	If sin->sin_port is '0' then a port (in the range 600-1023) will be cho-
     sen, and if bind(2) is successful, the sin->sin_port will be updated to contain the allocated port.

     If sin is the NULL pointer, a port will be allocated (as above).  However, there is no way for bindresvport() to return the allocated port in
     this case.  getsockname(2) can be used to determine the assigned port.

     Only root can bind to a privileged port; this call will fail for any other users.

     Function prototype of bindresvport() is biased to AF_INET socket.	bindresvport_sa() acts exactly the same, with more neutral function proto-
     type.  Note that both functions behave exactly the same, and both support AF_INET6 sockets as well as AF_INET sockets.

RETURN VALUES

     If the bind is successful, a 0 value is returned.	A return value of -1 indicates an error, which is further specified in the global errno.

ERRORS

     [EPFNOSUPPORT]	If second argument was supplied, and address family did not match between arguments.

     bindresvport() may also fail and set errno for any of the errors specified for the calls bind(2), getsockopt(2), or setsockopt(2).

SEE ALSO

     bind(2), getsockname(2), getsockopt(2), setsockopt(2), ip(4)

BSD
								 January 27, 2007							       BSD
All times are GMT -4. The time now is 11:35 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy