Our great sponsors
-
frp
A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
Using frp (https://github.com/fatedier/frp) this works like a charm, the only problem is that I have to run as root (which is not desirable security-wise) since I need ports 80 and 443 for various services behind my Reverse Proxy. Since these are part of the privileged ports range (up to 1024), a normal user (even with su rights) can't seem to use those.
Maybe? I know the original post was about Ubuntu, which I'm hamfisted in, on my best day. If we were talking RHEL/Enterprise Linux, I'd implement this through tuned. Further, I'd use the kernel_setting system role, which uses tuned, (https://github.com/linux-system-roles/kernel_settings) to then apply the update to all the appropriate systems.