<< Back to previous view |
[QB-1192] Ability to run QuickBuild server on port lower than 1024
|
|
Status: | Resolved |
Project: | QuickBuild |
Component/s: | None |
Affects Version/s: | 4.0.19, 4.0.20, 4.0.21, 4.0.22, 4.0.23, 4.0.24 |
Fix Version/s: | 4.0.41 |
Type: | Improvement | Priority: | Minor |
Reporter: | Michal Muszynski | Assigned To: | Robin Shen |
Resolution: | Fixed | Votes: | 4 |
Remaining Estimate: | Unknown | Time Spent: | Unknown |
Original Estimate: | Unknown | ||
Environment: | 64-bit SLES Linux 10 SP3 |
Description |
Right now our QuickBuild server runs on port 8810 and with SSL enabled. Users have to add a port number to access a website, e.g https://quickbuild.company.com:8810. We can get rid of port number by running QuickBuild behind Apache, but this leaves us with yet another service that has to be maintained (plus, restarting Apache requires separate privileges).
We'd love to run QuickBuild server on standard SSL port (443) without Apache, but Linux security mechanisms don't allow non-root users to bind to ports lower than 1024. Could you implement a mechanism of droping privileges like the one in Apache? We would then run `quickbuild-XX/bin/server.sh start` from root account and QB would drop privileges to a normal user (chosen by us). |
Comments |
Comment by Robin Shen [ 03/Jun/12 09:24 AM ] |
This can be implemented by modifying "bin/server.sh" (or "bin/agent.sh" for agents) to uncomment below line:
#RUN_AS_USER= |