From 9c1349a844512011e097c95985f807d166a73e96 Mon Sep 17 00:00:00 2001 From: Adam Cooke Date: Fri, 5 May 2017 12:07:41 +0100 Subject: [PATCH] remove iptables and use setcap in ubuntu install script --- script/install/ubuntu1604.sh | 10 ++-------- 1 file changed, 2 insertions(+), 8 deletions(-) diff --git a/script/install/ubuntu1604.sh b/script/install/ubuntu1604.sh index 9415264..4936de6 100644 --- a/script/install/ubuntu1604.sh +++ b/script/install/ubuntu1604.sh @@ -45,9 +45,10 @@ rabbitmqctl add_user postal p0stalpassw0rd rabbitmqctl set_permissions -p /postal postal ".*" ".*" ".*" # -# User +# System prep # useradd -r -m -d /opt/postal -s /bin/bash postal +setcap 'cap_net_bind_service=+ep' /usr/bin/ruby2.3 # # Application Setup @@ -67,13 +68,6 @@ mkdir /etc/nginx/ssl/ openssl req -x509 -newkey rsa:4096 -keyout /etc/nginx/ssl/postal.key -out /etc/nginx/ssl/postal.crt -days 365 -nodes -subj "/C=GB/ST=Example/L=Example/O=Example/CN=example.com" service nginx reload -# -# Configure SMTP on port 25 -# -iptables -t nat -A PREROUTING -p tcp --dport 25 -j REDIRECT --to-port 2525 -iptables -t nat -A OUTPUT -o lo -p tcp --dport 25 -j REDIRECT --to-port 2525 -iptables -I INPUT -p tcp -m tcp --dport 2525 -j ACCEPT - # # All done #