Thanks for the link Earl.
I recompiled the library and copied libNativeSupport.so to /usr/local/orion/liborion.so
I then started the server with
java -Dnative.user=orion -Djava.library.path=. -jar orion.jar -console2
I receive the following on the output - however the console doesn't start up :(
Setting native user to orion... done.
Orion/1.1.24 initialized
The server starts up, a "ps aux | grep orion" reveals that the server
is still running as root. Is this because:
(1) I am running Orion/1.1.24 or
(2) When a new thread is spawned the server then changes the owner
??
Thanks for the help.
On Wed, Aug 02, 2000 at 08:01:40AM -0600, Earl Marwil wrote:
> Adam,
>
> See http://www.orionsupport.com/?key=users on how to set this up. I had to
> recompile the .so file for my environment. Note that the (re)deployment
> occurs before the server is bound to the port, so that certain files are
> still owned by root which can create problems downstream. After the port is
> bound, then the hand off is made to the "native user".
>
> Hope this helps,
>
> Earl
>
>
> At 09:48 8/2/00 +1000, Adam Cassar wrote:
> >Is there any way to get Orion to drop root privilages after binding to
> >the port?
> >
> >On Mon, Jul 31, 2000 at 05:39:18PM +0200, Mattias Arbin wrote:
> > >
> > >
> > >
> > > > Mattias Arbin wrote:
> > > >
> > > > > I am trying to setup a linux user (Red Hat 6.2) to run orion.
> > > > > When starting Orion I get the error:
> > > > >
> > > > > Error starting HTTP-Server: Permission denied
> > > > > Orion/1.1.37 initialized
> > > > >
> > > > > Nothing in the logs.
> > > > >
> > > > > Any ideas?
> > > > >
> > > > > /Mattias
> > > >
> > > > Hi Mattias,
> > > >
> > > > Normally, that happens when you're trying to launch orion without root
> > > > privileges. Ports below 1024 are reserved and can only be bound by
> > > > root-owned programs.
> > > > There are several solutions, but the easiest is to choose:
> > > >
> > > > 1 - You want Orion to listen to port 80 (the standard http port) and so
> > > > you must launch it on a root prompt
> > > > 2 - You don't mind if Orion does not listen to other port (say, for
> > > > instance, 8080), but you want to launch it from an ordinary user
> > > > account. In this case, you must edit the
> > > > <orion_path>/config/default-web-site.xml
> > > > and on the <web-site ... tag, change the port from port="80" to
> > > > port="8080".
> > > >
> > > > In theory either one of these solutions, will make the permission denied
> > > > error go away
> > > >
> > > > Best Regards,
> > > >
> > > > F�bio
> > >
> > > Thanks. That explains the error.
> > > However, my problem was not that I could't start Orion. I have run it as
> > > root until now.
> > > I just thought that it might be good, for security reasons, to create a
> > user
> > > with
> > > less priviliges than root, to run Orion.
> > >
> > > /Thanks,
> > > Mattias
> > >
> > >
> > >
> >
> >--
> >
> >Adam Cassar
> >Senior Web Developer
> >___________________________________________
> >NetRegistry http://www.netregistry.au.com
> >Tel: +61 2 9699 6099 | Fax: +61 2 9699 6088
> >PO Box 270 Broadway NSW 2007 Australia
>
> Earl Marwil
> SCIENTECH, Inc.
> 1690 International Way
> Idaho Falls, ID 83402
> 208.525.3717
>
--
Adam Cassar
Senior Web Developer
___________________________________________
NetRegistry http://www.netregistry.au.com
Tel: +61 2 9699 6099 | Fax: +61 2 9699 6088
PO Box 270 Broadway NSW 2007 Australia
