[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Running kdc as unprivileged user

One or two ports is not an issue. kdc can listen on an unprivileged port. Port 88 can be forwarded appropriately (if at all). I was more worried about it doing something along the lines of NIS+/portmapper, which is what I am trying to get rid of right now. Anyway, I'll try it out then. Thank you.


>On Tue, Nov 07, 2006 at 12:05:51PM -0800, Howard Chu wrote:
>Yury Arkady Sobolev wrote:
>> Can the Kerberos daemons (kdc, kadmin) be run as an unprivileged user? I
>> do not see why not, but I have not found anyone doing this.
>> -Yury
>> The KDC must be privileged to listen on port 88. If you use some other 
>> port number, perhaps you can avoid that requirement.
> -- Howard Chu
> Chief Architect, Symas Corp.  http://www.symas.com
> Director, Highland Sun        http://highlandsun.com/hyc
> OpenLDAP Core Team            http://www.openldap.org/project/