tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From John Lianogou <>
Subject Fwd: non-root on 80
Date Tue, 05 Apr 2005 01:48:30 GMT
Hey Jeff,

Using jsvc is not at all mutually exclusive to the solution i offered.  

AFAIK, there is no way to make tomcat bind to 80 w/o running it as the 
root user... if anyone else has experience to the contrary, however, 
I'd be most pleased to be wrong on this one.


On Apr 4, 2005, at 7:20 PM, Jeff Duska wrote:

> I'm using the jsvc in the commons-daemon with a Tomcat user. Other 
> than not having to deal with the jsvc, is there a reason to pick this 
> over jsvc?
> Thanks,
> Jeff Duska
> John Lianogou wrote:
>> I had to set up a solution using IP tables on my redhat box. First 
>> some background as to why I solved it this way:
>> You can't run anything directly on port 80 without that process being 
>> executed as the root user... which -- for a variety of reasons I'm 
>> sure you needn't hear me go into -- is a Really Bad Idea.  ;-)
>> What you want to do in this case is to reroute port 80 traffic to a 
>> port that tomcat can bind to when executed as a "normal" user.
>> Here's what I did to accomplish this (hopefully you've got iptables 
>> on your box, as well... tho the path of this script may be different 
>> on yr system... so check into both matters if this doesn't work for 
>> you):
>> /sbin/iptables -t nat -I PREROUTING -p tcp --dport 80 -j REDIRECT 
>> --to-port 8080
>> You'll need root permissions to do this, tho.
>> Hope that helps,
>> jL
>> On Apr 4, 2005, at 5:58 PM, NetSQL wrote:
>>> I read that it has a stop method... but how do I get it to run at 
>>> port 80 ?
>>> .V
>>> David Smith wrote:
>>>> Look at jsvc in the commons-daemon project on 
>>>> --David
>>>> NetSQL wrote:
>>>>> apache drops to non root after bind to 80.
>>>>> How can this be done w/ tc 5.5?
>>>>> .V

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message