Ubuntu
coturn package

Add "AmbientCapabilities=CAP_NET_BIND_SERVICE" to systemd unit file

Bug #1875370 reported by Pascal Ernster on 2020-04-27

This bug affects 2 people

Affects		Status	Importance	Assigned to	Milestone
	coturn (Ubuntu)	Confirmed	Undecided	Unassigned

Bug Description

Please add the line "AmbientCapabilities=CAP_NET_BIND_SERVICE" to the [Service] section of coturn.service so that coturn can bind to ports <1024.

See also upstream bug https://github.com/coturn/coturn/issues/421

Revision history for this message

Launchpad Janitor (janitor) wrote on 2021-03-09:

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in coturn (Ubuntu):
status:	New → Confirmed

Revision history for this message

Christian Marg (einhirn) wrote on 2021-03-09:

I also ran into this issue - but setting "AmbientCapabilities=CAP_NET_BIND_SERVICE" in the service section of either an override file under /etc/systemd/system/coturn.service.d/override.conf or directly in coturn.service doesn't work.

I've also tried to use `/sbin/setcap 'cap_net_bind_service=+ep' /usr/bin/turnserver` to allow turnserver to listen on port 443 as non-root, but that didn't work either...

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntucoturn package

Add "AmbientCapabilities=CAP_NET_BIND_SERVICE" to systemd unit file

Bug Description

Other bug subscribers

Remote bug watches

Ubuntu
coturn package