Solaris 10 Non-Root User...Port 80

Tonight, I found out an easy way to allow a non-root user to bind to a privileged port (<1024) on Solaris 10.  I've done this before with RBAC (i.e. exec_attr, prof_attr), but knew there was an easy one line command to provide this privilege to a non-root user.

Here's the simple command.  You must run it as root. 

  # usermod -K defaultpriv=basic,net_privaddr tomcat

Now the user tomcat can run applications that need to bind to privileged ports (i.e. port 80).  For those taking notes, this addes a line into the /etc/user_attr file:

  tomcat::::type=normal;defaultpriv=basic,net_privaddr

Hope this might help another basic Solaris user out there like me.  If an expert Solaris user has a different opinion, please comment.

Comments:

For tomcat, see here, towards the end of the entry: http://blogs.sun.com/alanbur/entry/hosting_a_community_website_on

Posted by Alan Burlison on March 05, 2007 at 08:55 AM CST #

Yes, it did! It's just the information I was looking for, thanks!

Posted by john marino on April 01, 2007 at 02:45 AM CDT #

Perfect! Thanks!

Posted by Carlos Corrêa on July 04, 2007 at 05:33 AM CDT #

http://www.nizikaikun.com/
http://www.ms-online.co.jp/eshop/goods/ona_hole.php
http://www.ms-online.co.jp/eshop/goods/costume.php
http://www.ms-online.co.jp/eshop/goods/vibe.php
http://www.ms-shop.co.jp/shop/goods/goods.asp?category=5308
http://www.omochacha.com/
http://www.av-one.jp/zero/top.html
http://www.a-world.co.jp/
http://www.a-toy.ne.jp/
http://www.s-one-company.jp/
http://www.ec-life.co.jp/bath/index2.html
http://www.tbnetjapan.com/medlegal/
http://adultshop.co.jp/omocha.html
http://adultshop.co.jp/adultshop.html
http://adultshop.co.jp/enemagra.html
http://adultshop.co.jp/onahole.html
http://adultshop.co.jp/houkei.html
http://adultshop.co.jp/anal.html
http://adultshop.co.jp/denma.html
http://www.nicolas-dogs.com/
http://www.aqua01.net/
http://www.kabudayo.com/
http://www.fxf-business.com/
http://kaketayo.sakura.ne.jp/
http://www.11cash.net/
http://telink.jp/
http://www.complete-watch.com/

http://adultshop.co.jp/dutch.html
http://www.blyjapon.com/
http://www.achelabo.jp/
http://umanity.jp/
http://www.worldflower.net/rs/
http://furniture.michiookamoto.com/
http://www.blyjapon.com/
http://www.achelabo.jp/
http://www.open-japan.com/
http://www.open-japan.com/ideabox/index.php?category=beauty#top
http://www.open-japan.com/ideabox/index.php?category=dress#top
http://www.eic-av.com/
http://www.eic-av.com/list/fileIndex
http://www.saimu0.jp/
http://www.chasetokyo.com/charge.html
http://www.chasetokyo.com/whereabouts.html
http://www.chasetokyo.com/action.html
http://www.chasetokyo.com/immorality.html
http://www.chasetokyo.com/philippines.html
http://www.sigmac.jp/
http://www.tokei-biho.com/
http://www.rmtplusone.com/lineage2/
http://www.takumi-pg.com/
http://www.webtravel.co.jp/asia/chaina/
http://www.webtravel.co.jp/
http://www.trivy-system.com/Kekkon.htm
http://www.trivy-system.com/Sinyou.htm

Posted by thanhvn on December 17, 2008 at 11:51 PM CST #

Awesome post - worked like a charm! :) Thanks!

Posted by Daniel on December 23, 2008 at 08:20 AM CST #

Excellent

Posted by Manna on December 27, 2008 at 09:19 AM CST #

Post a Comment:
  • HTML Syntax: NOT allowed
About

tls

Search

Archives
« April 2014
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today