Exposing privileged ports Podman

Trying to run a podman instance of mayan edms, but get the following error:

rootlessport cannot expose privileged port 80, you can add ‘net.ipv4.ip_unprivileged_port_start=80’ to /etc/sysctl.conf


*After some searching I found that the docker recommendation was:*

Exposing privileged ports

To expose privileged ports (< 1024), set CAP_NET_BIND_SERVICE on rootlesskit binary.

$ sudo setcap cap_net_bind_service=ep $HOME/bin/rootlesskit

How can this be done on Fedora, as rootlesskit in not in the path specified?
Is this the best approach on Fedora with Podman, or is it better to set it to a higher port?,
If so how can I set this higher port?

From running podman inspect {container-id} I can see that one of my containers is trying to bind to port 80 and I get a permission denied. Can this port be changed?

2 Likes

Thanks for this, I guess I’ll have to reconfigure my yml file…