[Nix-dev] nixos service using privileged ports as a non-root user

[Eelco Dolstra]

Hi,

On 05/06/15 00:37, Oliver Charles wrote:

> I believe the User option in systemd unit configuration should do this. 

I think you'll also need:

  systemd.services.my-unit.serviceConfig.CapabilityBoundingSet =
"CAP_NET_BIND_SERVICE";

Alternatively, socket activation combined with the User setting should work.

-- 
Eelco Dolstra | LogicBlox, Inc. | http://nixos.org/~eelco/