With a 2.4 kernel you don't have to use process capabilities to allow httpd
to bind to port 80 safely because iptables can do the necessary redirection.
The problem at the moment is that ipchains doesn't redirect properly, unless
you redirect to a different port on each vs that is.
Tim
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Urivan Saaib
> Sent: 05 May 2001 04:09
> To: [EMAIL PROTECTED]
> Subject: Re: Rebooting with WebAdmin scripts
>
>
> Simon,
>
> > My preference would be to move to Linux 2.4 and use process
> capabilities to
> > give the admin user permission to bind port 80. This solves a
> whole pile of
> > problems - although then you have to worry about 2.4's stability...
>
> I agree with you, that might be the solutions, but some previous
> experience lead us to thinking more than twice to migrate without testing
> with our similar (actual) capabilities (hardware, vs's, domains,
> accounts, etc)
>
> The problem ? i don't have a machine as our server in my office, but
> a test will ocurr in a lower level hardware pretty soon (and after i take
> care of two of my sick baby daughters :( )
>
> If we had the VS for playing around and testing only, that could
> be a possible
> solution, but not for a production one.
>
> Besides, this solution might work with any FreeVSD version (hopefully).
>
> Regards,
>
> P.S.: btw, the task it is not as big as it sounds... :)
> _______________________________________________________
> Urivan Saaib
> Presidente
> CiberNET Mexico
> Email: [EMAIL PROTECTED]
>
