diff --git a/util/endlessh.service b/util/endlessh.service
index 2c04ee7..f6a0419 100644
--- a/util/endlessh.service
+++ b/util/endlessh.service
@@ -21,6 +21,13 @@ PrivateTmp=true
 PrivateDevices=true
 ProtectSystem=full
 ProtectHome=true
+
+## If you want Endlessh to bind on ports < 1024
+## 1) run: 
+##     setcap 'cap_net_bind_service=+ep' /usr/local/bin/endlessh
+## 2) uncomment following line
+#AmbientCapabilities=CAP_NET_BIND_SERVICE
+
 NoNewPrivileges=true
 ConfigurationDirectory=endlessh
 PrivateUsers=true
@@ -31,3 +38,4 @@ MemoryDenyWriteExecute=true
 
 [Install]
 WantedBy=multi-user.target
+