Michael, Thanks for cluebatting me. I checked the startup script in /etc/init.d/amavisd I'm using amavisd-new from rpmforge on Centos 5 That invokes amavis as user 'amavis'
If I just invoke amavisd as /usr/sbin/amavisd with $inet_socket_port = 25 and daemon_user/daemon_group set = 'amavis' then it binds correctly I'll assume that setting daemon_user/daemon_group would do the right thing in terms of dropping priveleges after binding. Would this be considered equivalent to the startup script which does a daemon --user amavis /usr/sbin/amavisd -c /etc/amavisd.conf ? On 10/31/07, Michael Scheidell <[EMAIL PROTECTED]> wrote: > > > -----Original Message----- > > From: [EMAIL PROTECTED] > > [mailto:[EMAIL PROTECTED] On Behalf > > Of Robert Gomezi > > Sent: Wednesday, October 31, 2007 6:34 AM > > To: [email protected] > > Subject: [AMaViS-user] amavisd-new not binding to > > inet_socket_port < 1024 ; > > > > > > Hi, I want to run amavisd-new on low ports (ports < 1024), > > however when I set $inet_socket_port to values lower than > > 1024 it won't start up > > > > am I missing something obvious or is this by design ? > > Have you looked at the errors? Run in debug mode? Run from cli first? > Also, if amavis changes to non root user before binding to those ports, > most security settings on most operating systems would prevent non root > users from binding to ports < 1024. > There may be some sysctls that would change that, but that is beyond the > scope of this mailing list. > > > -- > Michael Scheidell, CTO > Office: 561-999-5000 x 1259 > Direct: 561-939-7259 > Real time security alerts: http://www.secnap.com/news > > _________________________________________________________________________ > This email has been scanned and certified safe by SpammerTrap(tm). > For Information please see http://www.spammertrap.com > _________________________________________________________________________ > ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ AMaViS-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/amavis-user AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3 AMaViS-HowTos:http://www.amavis.org/howto/
