mirror of
https://gitea.blesmrt.net/mikaela/shell-things.git
synced 2024-12-31 23:32:34 +01:00
sysctl.d: add 23-starts-unprivileged-ports.conf
Self-explanatory within comments. Link list notes to selves contributing into this version: * https://kernelnewbies.org/Linux_4.11 * https://stackoverflow.com/a/51439516 * https://stackoverflow.com/questions/413807/is-there-a-way-for-non-root-processes-to-bind-to-privileged-ports-on-linux#comment90027734_51439516 * https://developer.apple.com/forums/thread/674179 * https://news.ycombinator.com/item?id=18302380 * https://security.stackexchange.com/q/242859 * https://stackoverflow.com/questions/413807/is-there-a-way-for-non-root-processes-to-bind-to-privileged-ports-on-linux#comment90027734_51439516
This commit is contained in:
parent
75731868e7
commit
93823eabd6
6
etc/sysctl.d/23-starts-unprivileged-ports.conf
Normal file
6
etc/sysctl.d/23-starts-unprivileged-ports.conf
Normal file
@ -0,0 +1,6 @@
|
||||
# I mainly care about protecting 22/SSH, and don't see myself using ports
|
||||
# below 80 (or 70 if Gopher fans around me get me around to it), the 1024
|
||||
# unprivileged start is legacy that Windows and macOS have ended ages ago.
|
||||
# Linux 4.11 April 2017, also works for IPv6
|
||||
# https://stackoverflow.com/questions/413807/is-there-a-way-for-non-root-processes-to-bind-to-privileged-ports-on-linux#comment90027734_51439516
|
||||
net.ipv4.ip_unprivileged_port_start=23
|
Loading…
Reference in New Issue
Block a user