Re: Possible to start the process with setuid while allowing it to listen on privileged ports?

From: Chris <bsd-lists_at_bsdforge.com>
Date: Mon, 11 Oct 2021 15:56:22 UTC
On 2021-10-11 08:50, Yuri wrote:
> Normal way to do this is for the application to first listen on the port and 
> then setuid.
> 
> 
> My question is about the situation when the application isn't willing to do 
> this.
> 
> 
> The project author says that setuid is too difficult in Go and Linux allows 
> to do
> this through systemd:
> 
> https://github.com/coredns/coredns/issues/4917#issuecomment-939892548
> 
> 
> Can in FreeBSD the process be run as a regular user but still be allowed to 
> bind
> to privileged ports?
Doesn't (X)org do this? If I'm right, maybe there's a clue there?

HTH

--Chris
> 
> 
> Thanks,
> 
> Yuri