high port usage forbidden and needs to be activated

NewNewYorkBridges / ansible-tor-bridge

Ansible role to deploy Tor Bridge nodes.

GNU General Public License v3.0

7 stars 5 forks source link

high port usage forbidden and needs to be activated #8

Closed toralf closed 2 years ago

toralf commented 2 years ago

At a fresh new Hetzner VPS I do get

Mar 05 17:11:27.000 [warn] Server managed proxy encountered a method error. (obfs4 listen tcp 0.0.0.0:443: bind: permission denied)
Mar 05 17:11:27.000 [warn] Managed proxy at '/usr/bin/obfs4proxy' failed the configuration protocol and will be destroyed.

toralf commented 2 years ago

What helped by https://www.mail-archive.com/tor-relays@lists.torproject.org/msg16552.html

sudo setcap cap_net_bind_service=+ep /usr/bin/obfs4proxy

lilianbaz commented 2 years ago

Hi toralf, I just made some modifications to run the setcap and to override systemd services. It should work as expected when the var obfs4port is under 1024 (for Debian/Ubuntu only, I'm searching how to do the same thing on FreeBSD).

toralf commented 2 years ago

ok, works here now under Debian