[Twisted-Python] Log file ownership

Tobias Oberstein tobias.oberstein at tavendo.de
Thu Jun 7 07:31:36 EDT 2012


> root). Since presumably the goal is to bind to a port <1024, you can do that
> instead using authbind
> (http://manpages.ubuntu.com/manpages/hardy/man1/authbind.1.html).

Just some comments ..

==

For binding ports <1024, there is at least one more option:

Since Linux kernel 2.6.24, the kernel supports associating capability sets with an executable file using setcap(8).

setcap 'cap_net_bind_service=+ep' <path to actual Python binary .. not a symlink!> 

http://linux.die.net/man/8/setcap
http://linux.die.net/man/7/capabilities

==

For maximum open FDs, if you run your stuff under a dedicated user, you can also modify

/etc/security/limits.conf

You will likely need to tune more options however .. like system wide max open FDs etc

http://urbanairship.com/blog/2010/09/29/linux-kernel-tuning-for-c500k/





More information about the Twisted-Python mailing list