On Tue, 21 Aug 2007, Blackburn, Marvin wrote: > Root is needed for port 80. Yes. But if you did a DNAT (iptables, or somewhere upstream), you could have 80 get bounced out to a nonprivileged port. Then the whole thing can be off in mortal user land.