On Tue, 15 Dec 2020 at 19:09, K. Kamhamea <kamha...@googlemail.com> wrote:
> Yes I found that on Google too, but of course ALL servers are started as > root, as described in Alvaro's manual. > I haven't read these manuals :) I'm using my own scripts :)) > > Quote: > " > sudo chown -R nobody:nogroup /opt/open510 > this changes the owner to be `nobody` > Restart coturn: sudo /etc/init.d/coturn restart > Kurento: sudo /etc/init.d/kurento-media-server restart > Tomcat-OpenMeetings: sudo /etc/init.d/tomcat4 restart > I guess `tomcat4` has some code to start as `nobody` as well It is insecure to start the service as `root` " > > Am Di., 15. Dez. 2020 um 03:35 Uhr schrieb Maxim Solodovnik < > solomax...@gmail.com>: > >> The error >> >> Caused by: java.net.SocketException: Permission denied >> >> is clear >> 443 is privileged port you have to be root or should be granted special >> permissions to listen on this port >> please search mailing list archives :)) >> >> >> >> On Tue, 15 Dec 2020 at 00:54, K. Kamhamea <kamha...@googlemail.com> >> wrote: >> >>> In the meantime i found a solution to the problem it is simply this >>> instruction >>> >>> iptables -t nat -A PREROUTING -p tcp --dport 443 -j REDIRECT --to-port >>> 5443 >>> >>> and th server.xml file can stay the same with port '5443' >>> >>> For those who want to debugthe problem anyway here is some of the >>> content of the logfiles. >>> >>> Starting with port 443 in server.xml >>> -------------------------------------------------- >>> >>> ...Restarting... >>> Using CATALINA_BASE: /opt/open510 >>> Using CATALINA_HOME: /opt/open510 >>> Using CATALINA_TMPDIR: /opt/open510/temp >>> Using JRE_HOME: /usr >>> Using CLASSPATH: >>> /opt/open510/bin/bootstrap.jar:/opt/open510/bin/tomcat-juli.jar >>> Using CATALINA_OPTS: >>> Tomcat started. >>> >>> 14-Dec-2020 17:07:08.538 INFO [main] >>> org.apache.catalina.startup.HostConfig.deployDirectory Deployment of web >>> application directory [/opt/open510/webapps/openmeetings] has finished in >>> [9,064] ms >>> 14-Dec-2020 17:07:08.538 INFO [main] >>> org.apache.catalina.startup.HostConfig.deployDirectory Deploying web >>> application directory [/opt/open510/webapps/ROOT] >>> 14-Dec-2020 17:07:08.545 INFO [main] >>> org.apache.catalina.startup.HostConfig.deployDirectory Deployment of web >>> application directory [/opt/open510/webapps/ROOT] has finished in [7] ms >>> 14-Dec-2020 17:07:08.548 INFO [main] >>> org.apache.coyote.AbstractProtocol.start Starting ProtocolHandler >>> ["http-nio-5080"] >>> 14-Dec-2020 17:07:08.553 INFO [main] >>> org.apache.catalina.startup.Catalina.start Server startup in [9107] >>> milliseconds >>> >>> starting with port 5443 >>> --------------------------------- >>> >>> ...Restarting... >>> Using CATALINA_BASE: /opt/open510 >>> Using CATALINA_HOME: /opt/open510 >>> Using CATALINA_TMPDIR: /opt/open510/temp >>> Using JRE_HOME: /usr >>> Using CLASSPATH: >>> /opt/open510/bin/bootstrap.jar:/opt/open510/bin/tomcat-juli.jar >>> Using CATALINA_OPTS: >>> Tomcat started. >>> >>> 14-Dec-2020 17:20:51.911 INFO [main] >>> org.apache.catalina.startup.HostConfig.deployDirectory Deployment of web >>> application directory [/opt/open510/webapps/openmeetings] has finished in >>> [8,919] ms >>> 14-Dec-2020 17:20:51.911 INFO [main] >>> org.apache.catalina.startup.HostConfig.deployDirectory Deploying web >>> application directory [/opt/open510/webapps/ROOT] >>> 14-Dec-2020 17:20:51.919 INFO [main] >>> org.apache.catalina.startup.HostConfig.deployDirectory Deployment of web >>> application directory [/opt/open510/webapps/ROOT] has finished in [8] ms >>> 14-Dec-2020 17:20:51.921 INFO [main] >>> org.apache.coyote.AbstractProtocol.start Starting ProtocolHandler >>> ["http-nio-5080"] >>> 14-Dec-2020 17:20:51.926 INFO [main] >>> org.apache.coyote.AbstractProtocol.start Starting ProtocolHandler >>> ["https-jsse-nio-5443"] >>> 14-Dec-2020 17:20:51.934 INFO [main] >>> org.apache.catalina.startup.Catalina.start Server startup in [8969] >>> milliseconds >>> >>> In the meantime I tried to change this file as well but had no effect >>> >>> ----------------------------------------------------------------------------------------------- >>> >>> /opt/open510/webapps/openmeetings/WEB-INF/classes/hazelcast.xml.original:78: >>> <attribute name="server.url"> >>> https://127.0.0.1:5443/openmeetings</attribute> >>> >>> >>> This is to my opinion the most relevant part of the catalina.out file >>> indicating the failure to start port 443 >>> >>> ------------------------------------------------------------------------------------------------------ >>> >>> >>> SEVERE [main] >>> org.apache.catalina.util.LifecycleBase.handleSubClassException Failed to >>> initialize component [Connector[HTTP/1.1-443]] >>> org.apache.catalina.LifecycleException: Protocol handler initialization >>> failed >>> at >>> org.apache.catalina.connector.Connector.initInternal(Connector.java:1042) >>> at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:136) >>> at >>> org.apache.catalina.core.StandardService.initInternal(StandardService.java:533) >>> at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:136) >>> at >>> org.apache.catalina.core.StandardServer.initInternal(StandardServer.java:1057) >>> at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:136) >>> at org.apache.catalina.startup.Catalina.load(Catalina.java:724) >>> at org.apache.catalina.startup.Catalina.load(Catalina.java:746) >>> at >>> java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native >>> Method) >>> at >>> java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) >>> at >>> java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) >>> at java.base/java.lang.reflect.Method.invoke(Method.java:566) >>> at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:302) >>> at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:472) >>> Caused by: java.net.SocketException: Permission denied >>> at java.base/sun.nio.ch.Net.bind0(Native Method) >>> at java.base/sun.nio.ch.Net.bind(Net.java:455) >>> at java.base/sun.nio.ch.Net.bind(Net.java:447) >>> at >>> java.base/sun.nio.ch.ServerSocketChannelImpl.bind(ServerSocketChannelImpl.java:227) >>> at >>> java.base/sun.nio.ch.ServerSocketAdaptor.bind(ServerSocketAdaptor.java:80) >>> at >>> org.apache.tomcat.util.net.NioEndpoint.initServerSocket(NioEndpoint.java:228) >>> at org.apache.tomcat.util.net.NioEndpoint.bind(NioEndpoint.java:211) >>> at >>> org.apache.tomcat.util.net.AbstractEndpoint.bindWithCleanup(AbstractEndpoint.java:1141) >>> at >>> org.apache.tomcat.util.net.AbstractEndpoint.init(AbstractEndpoint.java:1154) >>> at org.apache.coyote.AbstractProtocol.init(AbstractProtocol.java:592) >>> at >>> org.apache.coyote.http11.AbstractHttp11Protocol.init(AbstractHttp11Protocol.java:80) >>> at >>> org.apache.catalina.connector.Connector.initInternal(Connector.java:1039) >>> ... 13 more >>> >>> >> >> -- >> Best regards, >> Maxim >> > -- Best regards, Maxim