How to allow non-root user to listen on privileged port?

permissions port syslog

Solution 1:

setcap 'cap_net_bind_service=+ep' /path/to/syslogd

Requires a not-ancient linux kernel (2.6.24 or later)

Solution 2:

You could configure rinetd (available in most, if not all, distribution's standard repositories) to listen on port 514 and forward connections to some other port (above 1024, say 1514). That way the non-privileged user process can listen on 1514 and rinetd will forward connections so it appears to be listening on 514.

This will only work for TCP connections though. If you need to support UDP (or anything else) this way as well as or instead of TCP, then you can use iptables translation rules to achieve the same effect.

Solution 3:

Just found a very good discussion of this here: https://stackoverflow.com/questions/413807/is-there-a-way-for-non-root-processes-to-bind-to-privileged-ports-1024-on-li

Doesn't look easy

Related

Error 2020: Got packet bigger than 'max_allowed_packet' bytes when dumping table
Comparing owners and permissions of content of two folders?
How do I improve OpenVPN reliability over a high latency link?
How does the updated Shellshock vulnerability test for CVE-2014-7169 work?
How can I configure Postfix to ignore relayhost for some domains?
deleted cron tab file and need to recover it
How to extract Only the file name from the request uri
Will changing applicationHost.config cause IIS7 restart?
Exchange 2007 Client for Linux
Increase the value of LimitRequestFieldSize in Apache
What's the safest online password system?
Tunnel an ssh connection through an intermediate machine in a single command