allow a application on port UDP/162 as non root
Patrick Lambooy
p.lambooy at narmida.com
Thu Aug 6 14:44:44 UTC 2009
Hello,
I need some Selinux help
The problem is :
The application starts its own listening snmp trap app on port UDP/162
What i want is to allow a user (not root) to start the application(java)
and let it bind to the port UDP/162.
The original snmptrapd is deactivated so no problem here
The problem is port 1 till 1024 can only used by root
The only way to do this is to completely deactivate this part of security
which i realy dont like, very nasty.
Is there a way with selinux to do this.
Please explain in details because i'm still partly a selinux n00b
sry
The alternative is to let the app run in root which isnt going to happen :-)
I realy hope somebody knows how and if this can be done with selinux after
1 day searching and testing i'm a bit stuk
Other suggestions are also welcome
thnx
Regards,
Patrick Lambooy
More information about the redhat-sysadmin-list
mailing list