Running Tomcat on Port 80 with Fedora 16 without IP tables redirect

[Ole Ersoy <ol...@gmail.com>]

Hi,

In the past I have been able to run tomcat on port 80 under a "tomcat" user.  It seems like the latest versions of Fedora require that tomcat either be run as root or requests to 8080 have to be redirected using iptables.   Can anyone confirm this?

TIA,
- Ole

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org

Re: Running Tomcat on Port 80 with Fedora 16 without IP tables redirect

[André Warnier <aw...@ice-sa.com>]

Ole Ersoy wrote:
> Hi,
> 
> In the past I have been able to run tomcat on port 80 under a "tomcat" 
> user.  It seems like the latest versions of Fedora require that tomcat 
> either be run as root or requests to 8080 have to be redirected using 
> iptables.   Can anyone confirm this?
> 
What you probably mean is that the Fedora repackaged distribution of Tomcat installs it 
that way by default, no ?
Tomcat itself does not require that.
So, before someone else here tells you to install a genuine official Tomcat from the 
Tomcat website, have you checked on the Fedora support list ?
Otherwise, it should be quite simple to change the port by modifying the corresponding 
<Connector> tag in Tomcat's server.xml.
But then of course you might have to fight with SE-Linux and such things.
For which you may need the Fedora support list anyway, so why not start there ?

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org

Re: Running Tomcat on Port 80 with Fedora 16 without IP tables redirect

[Mark Eggers <it...@yahoo.com>]

----- Original Message -----

> From: Ole Ersoy <ol...@gmail.com>
> To: Tomcat Users List <us...@tomcat.apache.org>
> Cc: 
> Sent: Tuesday, February 7, 2012 10:06 AM
> Subject: Re: Running Tomcat on Port 80 with Fedora 16 without IP tables redirect
> 
>T hanks Andre and John.  I used jsvc to run tomcat before.  Maybe that's what 
> got me around the root user restriction.  Seems the simplest solution is to just 
> use NAT.  There are instructions at the bottom of this post for anyone else 
> interested.
> 
> http://www.davidghedini.com/pg/entry/install_tomcat_7_on_centos
> 
> Cheers,
> - Ole
> 
> On 02/07/2012 11:38 AM, John Renne wrote:
>> 
>>  On Feb 7, 2012, at 6:14 PM, Ole Ersoy wrote:
>> 
>>>  Hi,
>>> 
>>>  In the past I have been able to run tomcat on port 80 under a 
> "tomcat" user.  It seems like the latest versions of Fedora require 
> that tomcat either be run as root or requests to 8080 have to be redirected 
> using iptables.   Can anyone confirm this?
>>> 
>>  On each unix you will need root privileges to bind to a socket below 1024. 
> Tomcat is no different so it will need either root privileges, or a port over 
> 1024 (default indeed 8080)


apache-commons-daemon-jsvc appears to still be available for Fedora 16. Just looking at the package contents, it looks like you'll be on your own for writing the scripts though.


. . . . just my two cents.
/mde/

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org

Re: Running Tomcat on Port 80 with Fedora 16 without IP tables redirect

["Mark H. Wood" <mw...@IUPUI.Edu>]

On Tue, Feb 07, 2012 at 12:06:12PM -0600, Ole Ersoy wrote:
> Thanks Andre and John.  I used jsvc to run tomcat before.  Maybe
> that's what got me around the root user restriction.

That is exactly what it is for, and I can't imagine why every distro
doesn't use it instead of the arcane scripting that I've seen employed.

-- 
Mark H. Wood, Lead System Programmer   mwood@IUPUI.Edu
Asking whether markets are efficient is like asking whether people are smart.

Re: Running Tomcat on Port 80 with Fedora 16 without IP tables redirect

[Ole Ersoy <ol...@gmail.com>]

Thanks Andre and John.  I used jsvc to run tomcat before.  Maybe that's what got me around the root user restriction.  Seems the simplest solution is to just use NAT.  There are instructions at the bottom of this post for anyone else interested.

http://www.davidghedini.com/pg/entry/install_tomcat_7_on_centos

Cheers,
- Ole

On 02/07/2012 11:38 AM, John Renne wrote:
>
> On Feb 7, 2012, at 6:14 PM, Ole Ersoy wrote:
>
>> Hi,
>>
>> In the past I have been able to run tomcat on port 80 under a "tomcat" user.  It seems like the latest versions of Fedora require that tomcat either be run as root or requests to 8080 have to be redirected using iptables.   Can anyone confirm this?
>>
> On each unix you will need root privileges to bind to a socket below 1024. Tomcat is no different so it will need either root privileges, or a port over 1024 (default indeed 8080)
>
> John
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org

Re: Running Tomcat on Port 80 with Fedora 16 without IP tables redirect

[John Renne <jo...@gniffelnieuws.net>]

On Feb 7, 2012, at 6:14 PM, Ole Ersoy wrote:

> Hi,
> 
> In the past I have been able to run tomcat on port 80 under a "tomcat" user.  It seems like the latest versions of Fedora require that tomcat either be run as root or requests to 8080 have to be redirected using iptables.   Can anyone confirm this?
> 
On each unix you will need root privileges to bind to a socket below 1024. Tomcat is no different so it will need either root privileges, or a port over 1024 (default indeed 8080)

John


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org