mirrors/redoctober
1
0
Fork 0
mirror of https://github.com/cloudflare/redoctober.git synced 2026-01-04 04:04:24 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
master
redoctober/redoctober.socket
Joshua Kroll 638a25bbbc Add the ability to listen to systemd-provided sockets. 
Add a new flag, -systemdfds, which causes Red October to expect to be
provisioned on launch with file descriptors for sockets opened by
systemd. This is useful for socket activation, but also allows systemd
to bind privileged ports for us. I've included example systemd
configuration files that successfully start Red October as a service
user without admin rights but bound to 443 in a Jessie VM for me. They
need to be installed where systemd expects them, which on Jessie is
/etc/systemd/system/redoctober.service and
/etc/systemd/system/sockets.target.wants/redoctober.socket.
2015-10-09 11:24:08 -07:00

10 lines
292 B
SYSTEMD
Raw Permalink Blame History

# Example socket file, instructing systemd to bind 443. Used by the
# corresponding redoctober.service target to launch a socket-activated
# Red October instance that can run unprivileged but bind to a
# privileged port.
[Socket]
ListenStream=127.0.0.1:443
[Install]
WantedBy=sockets.target
Reference in New Issue View Git Blame Copy Permalink