How to run a server on port 80 as a normal user on Linux?

Short answer: you can’t. Ports below 1024 can be opened only by root. As per comment – well, you can, using CAP_NET_BIND_SERVICE, but that approach, applied to java bin will make any java program to be run with this setting, which is undesirable, if not a security risk.

The long answer: you can redirect connections on port 80 to some other port you can open as normal user.

Run as root:

# iptables -t nat -A PREROUTING -p tcp --dport 80 -j REDIRECT --to-port 8080

As loopback devices (like localhost) do not use the prerouting rules, if you need to use localhost, etc., add this rule as well (thanks @Francesco):

# iptables -t nat -I OUTPUT -p tcp -d 127.0.0.1 --dport 80 -j REDIRECT --to-ports 8080

NOTE: The above solution is not well suited for multi-user systems, as any user can open port 8080 (or any other high port you decide to use), thus intercepting the traffic. (Credits to CesarB).

EDIT: as per comment question – to delete the above rule:

# iptables -t nat --line-numbers -n -L

This will output something like:

Chain PREROUTING (policy ACCEPT)
num  target     prot opt source               destination         
1    REDIRECT   tcp  --  0.0.0.0/0            0.0.0.0/0           tcp dpt:8080 redir ports 8088
2    REDIRECT   tcp  --  0.0.0.0/0            0.0.0.0/0           tcp dpt:80 redir ports 8080

The rule you are interested in is nr. 2, so to delete it:

# iptables -t nat -D PREROUTING 2

Related Posts:

  1. Chmod 777 to a folder and all contents [duplicate]
  2. Cannot connect to the Docker daemon at unix:/var/run/docker.sock. Is the docker daemon running?
  3. Amazon Linux: apt-get: command not found
  4. How do I find all files containing specific text on Linux?
  5. “Couldn’t find a file descriptor referring to the console” on Ubuntu bash on Windows
  6. Where can I find php.ini?
  7. gzip: stdin: not in gzip format tar: Child returned status 1 tar: Error is not recoverable: exiting now
  8. How can I recursively find all files in current and subfolders based on wildcard matching?
  9. How to install grub after installing Windows 10
  10. Linux: ‘Username’ is not in the sudoers file. This incident will be reported
  11. “E: Unable to locate package python-pip” on Ubuntu 18.04 [duplicate]
  12. How can I exclude directories from grep -R?
  13. How to exclude a directory in find . command
  14. mysql_config not found when installing mysqldb python interface
  15. Linux error while loading shared libraries: cannot open shared object file: No such file or directory
  16. Shell command to tar directory excluding certain files/folders
  17. QEMU: /bin/sh: can’t access tty; job control turned off
  18. Explaining the ‘find -mtime’ command
  19. Meaning of exit status 1 returned by linux command
  20. Creating a new directory in C
  21. Extract file basename without path and extension in bash
  22. How to change permissions for a folder and its subfolders/files in one step
  23. mv: cannot stat error : No such file or directory error
  24. mysql_config not found when installing mysqldb python interface
  25. Linux error while loading shared libraries: cannot open shared object file: No such file or directory
  26. Pseudo-terminal will not be allocated because stdin is not a terminal
  27. linux command to get size of files and directories present in a particular folder?
  28. screen Cannot open your terminal ‘/dev/pts/0’ – please check
  29. ./configure : /bin/sh^M : bad interpreter
  30. TCP congestion control version: HTCP module vs highspeed module in linux kernel
  31. How to use regex with find command?
  32. What is the difference between /etc/rc.local and ~/.bashrc?
  33. Snort Message – WARNING: No preprocessors configured for policy 0
  34. Compile the Fortran program in Windows using gfortran
  35. How can I set the ‘backend’ in matplotlib in Python?
  36. Yum fails with – There are no enabled repos.
  37. Unable to establish SSL connection upon wget on Ubuntu 14.04 LTS
  38. Getting stty: standard input: Inappropriate ioctl for device when using scp through an ssh tunnel
  39. configure: error: cannot run C compiled programs
  40. What does set -e mean in a bash script?
  41. How to make rpm auto install dependencies
  42. How do I install chkconfig on Ubuntu?
  43. “find: paths must precede expression:” How do I specify a recursive search that also finds files in the current directory?
  44. Apache server keeps crashing, “caught SIGTERM, shutting down”
  45. List all mounts in Linux
  46. How to use sed to extract substring
  47. Wait for user input in C?
  48. Difference between exec, execvp, execl, execv?
  49. Restarting cron after changing crontab file?
  50. tar: Error is not recoverable: exiting now
  51. cd into directory without having permission
  52. python-dev installation error: ImportError: No module named apt_pkg
  53. How to enable Bash in Windows 10 developer preview?
  54. How do I know the script file name in a Bash script?
  55. WordPress sites being filled with random PHP files
  56. how to properly mount external server directory for wordpress uploads
  57. WordPress cloning issue
  58. Is it a good idea to edit WordPress within Eclipse? [closed]
  59. Why is my crontab not working, and how can I troubleshoot it?
  60. Showing total progress in rsync: is it possible?
  61. How to bind MySQL server to more than one IP address?
  62. Why is “chmod -R 777 /” destructive?
  63. What’s the best way of handling permissions for Apache 2’s user www-data in /var/www?
  64. How to check if a library is installed?
  65. Is it normal to get hundreds of break-in attempts per day?
  66. How to setup passwordless `sudo` on Linux?
  67. How do I prevent accidental rm -rf /*?
  68. How do I verify the speed of my NIC?
  69. What does Virtual memory size in top mean?
  70. What’s the best way to check if a volume is mounted in a Bash script?
  71. How do I find the UUID of a filesystem
  72. Find out symbolic link target via command line
  73. Meaning of directories on Unix and Unix like systems
  74. How to handle security updates within Docker containers?
  75. Job scheduling using crontab, what will happen when computer is shutdown during that time?
  76. Is it possible to make Nginx listen to different ports?
  77. how do you create an ssh key for another user?
  78. How can I monitor hard disk load on Linux?
  79. REJECT vs DROP when using iptables
  80. Linux command line best practices and tips?
  81. How to run command as user who has /usr/sbin/nologin as Shell?
  82. How to get pid of just started process
  83. How to disable everything in crontab -l?
  84. df says disk is full, but it is not
  85. Perform rsync while following sym links
  86. What is the maximum port number?
  87. Show all users and their groups/vice versa
  88. Why is TCP accept() performance so bad under Xen?
  89. Caching/preloading files on Linux into RAM
  90. How to sort ps output by process start time?
  91. What’s wrong with always being root?
  92. Is there a proper way to clear logs?
  93. Hundreds of failed ssh logins
  94. Transfer 15TB of tiny files
  95. What should I do when I got the KEYEXPIRED error message after an apt-get update?
  96. protocol version mismatch — is your shell clean?
  97. How do I join two named pipes into single input stream in linux
  98. How should an IT department choose a standard Linux distribution?
  99. Command line program to test DHCP service
  100. Service start request repeated too quickly, refusing to start limit

Leave a Comment