Date: Tue, 21 Aug 2018 10:29:52 +0700 From: Eugene Grosbein <eugen@grosbein.net> To: Charles Sprickman <spork@bway.net> Cc: FreeBSD Stable <freebsd-stable@freebsd.org> Subject: Re: Bind to port <1024 in jail Message-ID: <ed1f68a0-b436-d4f7-4de5-0afb9e86b1c9@grosbein.net> In-Reply-To: <36614699-F6E0-495D-8EC0-FCF4B1B12BA3@bway.net> References: <75536186-7D58-498C-BFC6-9284EB7CB444@lassitu.de> <1534777490.27158.47.camel@freebsd.org> <36614699-F6E0-495D-8EC0-FCF4B1B12BA3@bway.net>
next in thread | previous in thread | raw e-mail | index | archive | help
21.08.2018 1:37, Charles Sprickman via freebsd-stable wrote: > I am so behind on all the new toys in the system. I was very embarrassed > to find out about this feature from someone who’s primarily working > with Linux in his day job. He was just looking to bind an Elixir app to 80/443 > without running as root and he shared this: > > security.mac.portacl.rules=gid:2001:tcp:80,gid:2001:tcp:443 > > We stuck that in sysctl.conf and that was that. This is not so new: mac_portacl is here since 8.0-RELEASE. > I wish FreeBSD still had the evangelism folks that would go out and > tell the userbase and anyone else that would listen about all the cool > new stuff. :) Well, we still have Release Notes for every major or minor release. Get a habit reading it once a release and you'll know it all.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?ed1f68a0-b436-d4f7-4de5-0afb9e86b1c9>