So true! In tomcat4 OM is started as nobody. Thank You. Am Mi., 16. Dez. 2020 um 04:18 Uhr schrieb Maxim Solodovnik < solomax...@gmail.com>:
> > > On Tue, 15 Dec 2020 at 19:09, K. Kamhamea <kamha...@googlemail.com> wrote: > >> Yes I found that on Google too, but of course ALL servers are started as >> root, as described in Alvaro's manual. >> > > I haven't read these manuals :) > I'm using my own scripts :)) > > >> >> Quote: >> " >> sudo chown -R nobody:nogroup /opt/open510 >> > > this changes the owner to be `nobody` > > >> Restart coturn: sudo /etc/init.d/coturn restart >> Kurento: sudo /etc/init.d/kurento-media-server restart >> Tomcat-OpenMeetings: sudo /etc/init.d/tomcat4 restart >> > > I guess `tomcat4` has some code to start as `nobody` as well > It is insecure to start the service as `root` > > > " >> >> Am Di., 15. Dez. 2020 um 03:35 Uhr schrieb Maxim Solodovnik < >> solomax...@gmail.com>: >> >>> The error >>> >>> Caused by: java.net.SocketException: Permission denied >>> >>> is clear >>> 443 is privileged port you have to be root or should be granted special >>> permissions to listen on this port >>> please search mailing list archives :)) >>> >>> >>> >>> On Tue, 15 Dec 2020 at 00:54, K. Kamhamea <kamha...@googlemail.com> >>> wrote: >>> >>>> In the meantime i found a solution to the problem it is simply this >>>> instruction >>>> >>>> iptables -t nat -A PREROUTING -p tcp --dport 443 -j REDIRECT --to-port >>>> 5443 >>>> >>>> and th server.xml file can stay the same with port '5443' >>>> >>>> For those who want to debugthe problem anyway here is some of the >>>> content of the logfiles. >>>> >>>> Starting with port 443 in server.xml >>>> -------------------------------------------------- >>>> >>>> ...Restarting... >>>> Using CATALINA_BASE: /opt/open510 >>>> Using CATALINA_HOME: /opt/open510 >>>> Using CATALINA_TMPDIR: /opt/open510/temp >>>> Using JRE_HOME: /usr >>>> Using CLASSPATH: >>>> /opt/open510/bin/bootstrap.jar:/opt/open510/bin/tomcat-juli.jar >>>> Using CATALINA_OPTS: >>>> Tomcat started. >>>> >>>> 14-Dec-2020 17:07:08.538 INFO [main] >>>> org.apache.catalina.startup.HostConfig.deployDirectory Deployment of web >>>> application directory [/opt/open510/webapps/openmeetings] has finished in >>>> [9,064] ms >>>> 14-Dec-2020 17:07:08.538 INFO [main] >>>> org.apache.catalina.startup.HostConfig.deployDirectory Deploying web >>>> application directory [/opt/open510/webapps/ROOT] >>>> 14-Dec-2020 17:07:08.545 INFO [main] >>>> org.apache.catalina.startup.HostConfig.deployDirectory Deployment of web >>>> application directory [/opt/open510/webapps/ROOT] has finished in [7] ms >>>> 14-Dec-2020 17:07:08.548 INFO [main] >>>> org.apache.coyote.AbstractProtocol.start Starting ProtocolHandler >>>> ["http-nio-5080"] >>>> 14-Dec-2020 17:07:08.553 INFO [main] >>>> org.apache.catalina.startup.Catalina.start Server startup in [9107] >>>> milliseconds >>>> >>>> starting with port 5443 >>>> --------------------------------- >>>> >>>> ...Restarting... >>>> Using CATALINA_BASE: /opt/open510 >>>> Using CATALINA_HOME: /opt/open510 >>>> Using CATALINA_TMPDIR: /opt/open510/temp >>>> Using JRE_HOME: /usr >>>> Using CLASSPATH: >>>> /opt/open510/bin/bootstrap.jar:/opt/open510/bin/tomcat-juli.jar >>>> Using CATALINA_OPTS: >>>> Tomcat started. >>>> >>>> 14-Dec-2020 17:20:51.911 INFO [main] >>>> org.apache.catalina.startup.HostConfig.deployDirectory Deployment of web >>>> application directory [/opt/open510/webapps/openmeetings] has finished in >>>> [8,919] ms >>>> 14-Dec-2020 17:20:51.911 INFO [main] >>>> org.apache.catalina.startup.HostConfig.deployDirectory Deploying web >>>> application directory [/opt/open510/webapps/ROOT] >>>> 14-Dec-2020 17:20:51.919 INFO [main] >>>> org.apache.catalina.startup.HostConfig.deployDirectory Deployment of web >>>> application directory [/opt/open510/webapps/ROOT] has finished in [8] ms >>>> 14-Dec-2020 17:20:51.921 INFO [main] >>>> org.apache.coyote.AbstractProtocol.start Starting ProtocolHandler >>>> ["http-nio-5080"] >>>> 14-Dec-2020 17:20:51.926 INFO [main] >>>> org.apache.coyote.AbstractProtocol.start Starting ProtocolHandler >>>> ["https-jsse-nio-5443"] >>>> 14-Dec-2020 17:20:51.934 INFO [main] >>>> org.apache.catalina.startup.Catalina.start Server startup in [8969] >>>> milliseconds >>>> >>>> In the meantime I tried to change this file as well but had no effect >>>> >>>> ----------------------------------------------------------------------------------------------- >>>> >>>> /opt/open510/webapps/openmeetings/WEB-INF/classes/hazelcast.xml.original:78: >>>> <attribute name="server.url"> >>>> https://127.0.0.1:5443/openmeetings</attribute> >>>> >>>> >>>> This is to my opinion the most relevant part of the catalina.out file >>>> indicating the failure to start port 443 >>>> >>>> ------------------------------------------------------------------------------------------------------ >>>> >>>> >>>> SEVERE [main] >>>> org.apache.catalina.util.LifecycleBase.handleSubClassException Failed to >>>> initialize component [Connector[HTTP/1.1-443]] >>>> org.apache.catalina.LifecycleException: Protocol handler initialization >>>> failed >>>> at >>>> org.apache.catalina.connector.Connector.initInternal(Connector.java:1042) >>>> at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:136) >>>> at >>>> org.apache.catalina.core.StandardService.initInternal(StandardService.java:533) >>>> at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:136) >>>> at >>>> org.apache.catalina.core.StandardServer.initInternal(StandardServer.java:1057) >>>> at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:136) >>>> at org.apache.catalina.startup.Catalina.load(Catalina.java:724) >>>> at org.apache.catalina.startup.Catalina.load(Catalina.java:746) >>>> at >>>> java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native >>>> Method) >>>> at >>>> java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) >>>> at >>>> java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) >>>> at java.base/java.lang.reflect.Method.invoke(Method.java:566) >>>> at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:302) >>>> at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:472) >>>> Caused by: java.net.SocketException: Permission denied >>>> at java.base/sun.nio.ch.Net.bind0(Native Method) >>>> at java.base/sun.nio.ch.Net.bind(Net.java:455) >>>> at java.base/sun.nio.ch.Net.bind(Net.java:447) >>>> at >>>> java.base/sun.nio.ch.ServerSocketChannelImpl.bind(ServerSocketChannelImpl.java:227) >>>> at >>>> java.base/sun.nio.ch.ServerSocketAdaptor.bind(ServerSocketAdaptor.java:80) >>>> at >>>> org.apache.tomcat.util.net.NioEndpoint.initServerSocket(NioEndpoint.java:228) >>>> at org.apache.tomcat.util.net.NioEndpoint.bind(NioEndpoint.java:211) >>>> at >>>> org.apache.tomcat.util.net.AbstractEndpoint.bindWithCleanup(AbstractEndpoint.java:1141) >>>> at >>>> org.apache.tomcat.util.net.AbstractEndpoint.init(AbstractEndpoint.java:1154) >>>> at org.apache.coyote.AbstractProtocol.init(AbstractProtocol.java:592) >>>> at >>>> org.apache.coyote.http11.AbstractHttp11Protocol.init(AbstractHttp11Protocol.java:80) >>>> at >>>> org.apache.catalina.connector.Connector.initInternal(Connector.java:1039) >>>> ... 13 more >>>> >>>> >>> >>> -- >>> Best regards, >>> Maxim >>> >> > > -- > Best regards, > Maxim >
