May 9th, 2011, 01:34 AM
Running tc server SSL on port 443
We've got a new fun project, in the end a single war in a tc server instance (installed as RPM on SLES11). I used the tcruntime-instance.sh script with the bio-ssl template to create an instance. It works great if I use --property bio-ssl.https.port=8443, but if I specify port 443 the server cannot start.
From what I can tell, only root can bind a port lower than 1024, so I need some options. In other projects, I've been using Apache with mod_proxy or mod_jk, but this time we were looking for as few components as possible for a virtual appliance implementation.
Any ideas for port forwarding? What are your favorite solutions?
Aug 24th, 2011, 09:47 AM
not a good idea to run tomcat as root, run it on 8443, then use iptables to listen on 443 and forward to tomcat. this is the security recommendation
Tags for this Thread