Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 4 Jan 2012 12:52:44 +0200
From:      Gareth de Vaux <bsd@lordcow.org>
To:        Dino Vliet <dino_vliet@yahoo.com>
Cc:        "ports@FreeBSD.org" <ports@freebsd.org>, "freebsd-questions@freebsd.org" <freebsd-questions@freebsd.org>
Subject:   Re: best way to bind webserver to port 80 without running as root
Message-ID:  <20120104105244.GA6157@lordcow.org>
In-Reply-To: <1325671801.19145.YahooMailNeo@web113620.mail.gq1.yahoo.com>
References:  <1325671801.19145.YahooMailNeo@web113620.mail.gq1.yahoo.com>

next in thread | previous in thread | raw e-mail | index | archive | help
On Wed 2012-01-04 (02:10), Dino Vliet wrote:
> suddenly I'm facing this quest on freebsd 8. I need to bind my little webserver running aolserver to port 80. In the past I was always using port 8080 and had my router configured to forward requests on port 80 to the server on port 8080. However, I am planning to host my little site on a virtual server with a hosting company and figuredI can't use the workaround I always used. So my question is, how to bind aolserver to port 80 without running?as root as I understood ports below 1024 can only be used by root.
> I found a sysctl net.inet.ip.portrange.reservedhigh which enables me to set it to 0. However, I don't know what the security ramifications are of using that. Are there any other options I could consider?

Hi, if your server isn't able to bind as root and then drop its ownership
then you can just run the process on a higher port number and use something
like pf or portfwd to forward requests to port 80 to that higher port.



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20120104105244.GA6157>