Sunday Mar 04, 2007

Solaris 10 Non-Root User...Port 80

Tonight, I found out an easy way to allow a non-root user to bind to a privileged port (<1024) on Solaris 10.  I've done this before with RBAC (i.e. exec_attr, prof_attr), but knew there was an easy one line command to provide this privilege to a non-root user.

Here's the simple command.  You must run it as root. 

  # usermod -K defaultpriv=basic,net_privaddr tomcat

Now the user tomcat can run applications that need to bind to privileged ports (i.e. port 80).  For those taking notes, this addes a line into the /etc/user_attr file:

  tomcat::::type=normal;defaultpriv=basic,net_privaddr

Hope this might help another basic Solaris user out there like me.  If an expert Solaris user has a different opinion, please comment.

About

tls

Search

Archives
« April 2014
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today