On 18/03/16 09:47, Thomas Eckardt wrote: >> I thought running it as a non-root daemon was the right thing to do :) > Do I use linux or you ? You should know the OS you use! > creating listeners on port 1-1024 are resticted to root per default - so > you have three option > > - use listeners above 1024 > - run the process with root permissions > - switch off the port restriction in the OS > It's not as straightforward as that though is it?
This is only an issue because assp binds to the port initially as root and then changes the effective user id after - meaning you cannot unbind and rebind - so ultimately it's implementation specific - you do not have to run processes that listen on privileged ports as root. This is purely as result of the need to rebind. Plenty of other services bind once and switch user and never need to rebind. I'll probably set assp up to listen on non-privileged ports and redirect to them in the firewall - I think it's better for it to be running non-privileged. Cheers ------------------------------------------------------------------------------ Transform Data into Opportunity. Accelerate data analysis in your applications with Intel Data Analytics Acceleration Library. Click to learn more. http://pubads.g.doubleclick.net/gampad/clk?id=278785231&iu=/4140 _______________________________________________ Assp-user mailing list Assp-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-user
