V’s Link & Photo Blog

>>> I’ve got a linux server that runs apache. The apache process is

>>> now dead, but tcp port 80 is still listening. To confirm there is

>>> no process associated with this I have done the following:

>>>

>>> netstat -pn|grep 80 lsof -i|grep http

>>>

>> does fuser 80/tcp return anything when ran as root?

Link to source…

http://www.caucho.com/resin-3.0/install/faq.xtp#How-can-I-bind-to-a-port-under-1024-and-still-run-as-a-non-root-user?

How can I bind to a port under 1024 and still run as a non-root user?

I want to bind resin to port 80, but my operating system only allows root to bind to ports under 1024. If I run Resin as root, it is a security risk. How can I start Resin as root but then change the user and group id after it is bound to the port?

Most Unix systems can simply use the <user-name> and <group-name> configuration tags.

New versions of Linux (with the new threading model) can also use <user-name> , but using "/sbin/iptables" may be a better solution. The Linux iptables maps port 80 requests to port 8080. This way, your Resin instance can start up as a normal user and listen to port 8080 without needing to start as root.

Linux 2.2.x route port 80 to port 8080

/sbin/ipchains -A input -i eth+ -j REDIRECT 8080 -p tcp –destination-port 80

Linux 2.4.x route port 80 to port 8080

/sbin/iptables -t nat -A PREROUTING -i eth+ -p tcp –dport 80 -j REDIRECT –to-port 8080

http://www.caucho.com/resin-3.0/install/faq.xtp#How-can-I-bind-to-a-port-under-1024-and-still-run-as-a-non-root-user?

Link to source…

Helping you with UNIX and Linux providing information on tons of UNIX commands simularities of unix and DOS and more.

Link to article…

FedoraForum.org is the Support forum for Fedora Core Linux.

Link to article…

LinuxQuestions.org offers a free Linux forum where Linux newbies can ask questions and Linux experts can offer advice. Topics include security, installation, networking and much more.

Link to article…