On Sun, 21 Aug 2011, Henrique de Moraes Holschuh h...@debian.org wrote:
On Sat, 20 Aug 2011, Andreas Barth wrote:
* Henrique de Moraes Holschuh (h...@debian.org) [110820 14:39]:
Yes. And we can easily maintain a current one for Debian-packaged
software, although the initial build of such
On Sat, 20 Aug 2011, Adam Borowski kilob...@angband.pl wrote:
It seems to me that the only problem is if you run multiple instances of
a daemon on different ports and don't use /etc/bindresvport.blacklist,
SE Linux, or some other method of telling bindresvport() to leave your
port alone.
On Sat, 20 Aug 2011, Russell Coker wrote:
On Sat, 20 Aug 2011, Adam Borowski kilob...@angband.pl wrote:
It seems to me that the only problem is if you run multiple instances of
a daemon on different ports and don't use /etc/bindresvport.blacklist,
SE Linux, or some other method of
On Fri, 2011-08-19 at 14:36 +0100, Edward Allcutt wrote:
On Thu, 18 Aug 2011, Ben Hutchings wrote:
On Thu, Aug 18, 2011 at 05:39:16PM +0200, Jan Möbius wrote:
sometimes rpc.statd binds to port 631 udp which is used by cups. Therefore
cups is unable to bind to its port and no printers get
* Henrique de Moraes Holschuh (h...@debian.org) [110820 14:39]:
Yes. And we can easily maintain a current one for Debian-packaged software,
although the initial build of such a blacklist will take some work.
Actually, the existing interface net.ipv4.ip_local_port_range seems to
work quite
On Sat, 2011-08-20 at 16:17 +0200, Andreas Barth wrote:
* Henrique de Moraes Holschuh (h...@debian.org) [110820 14:39]:
Yes. And we can easily maintain a current one for Debian-packaged software,
although the initial build of such a blacklist will take some work.
Actually, the existing
On Sat, 20 Aug 2011, Andreas Barth wrote:
* Henrique de Moraes Holschuh (h...@debian.org) [110820 14:39]:
Yes. And we can easily maintain a current one for Debian-packaged software,
although the initial build of such a blacklist will take some work.
Actually, the existing interface
On Fri, Aug 19, 2011 at 10:13:17AM +1000, Russell Coker wrote:
Systems running SE Linux tend not to have this problem. In most cases the
daemons which use RPC services are not permitted to bind to any of the ports
that are reserved for services and therefore such a bind attempt fails with
On Fri, 19 Aug 2011, Guus Sliepen g...@debian.org wrote:
We could also patch bindresvport() to skip all ports mentioned in
/etc/services, to get similar behaviour as with SE Linux. Or patch the
programs using it to first try to bind to a static port that does not
conflict with those in
On Fri, Aug 19, 2011 at 10:49:41AM +0200, Guus Sliepen wrote:
On Fri, Aug 19, 2011 at 10:13:17AM +1000, Russell Coker wrote:
Systems running SE Linux tend not to have this problem. In most cases the
daemons which use RPC services are not permitted to bind to any of the
ports
that are
On Thu, 18 Aug 2011, Ben Hutchings wrote:
On Thu, Aug 18, 2011 at 05:39:16PM +0200, Jan Möbius wrote:
sometimes rpc.statd binds to port 631 udp which is used by cups. Therefore cups
is unable to bind to its port and no printers get discovered.
Rebooting the system helps as rpc.statd uses
On Fri, 19 Aug 2011, Adam Borowski kilob...@angband.pl wrote:
Or use a whitelist rather than pretending that /etc/services was complete
anywhere within the last 20 years.
AFAIK /etc/services has always been a complete list of ports assigned by IANA.
If someone makes a port commonly used
On Sat, Aug 20, 2011 at 12:02:12AM +1000, Russell Coker wrote:
On Fri, 19 Aug 2011, Adam Borowski kilob...@angband.pl wrote:
Not to mention bindresvport() removes the freedom of the sysadmin to bind
services to whatever ports she wishes. Or, say, run multiple instances of
a service.
If
On Thu, Aug 18, 2011 at 05:39:16PM +0200, Jan Möbius wrote:
Package: nfs-common
Version: 1:1.2.4-1
Severity: normal
Hi,
sometimes rpc.statd binds to port 631 udp which is used by cups. Therefore
cups is unable to bind to its port and no printers get discovered.
Rebooting the system
On Thu, Aug 18, 2011 at 05:41:22PM +0100, Ben Hutchings wrote:
On Thu, Aug 18, 2011 at 05:39:16PM +0200, Jan Möbius wrote:
sometimes rpc.statd binds to port 631 udp which is used by cups. Therefore
cups is unable to bind to its port and no printers get discovered.
Rebooting the system
On Thu, 2011-08-18 at 19:03 +, brian m. carlson wrote:
On Thu, Aug 18, 2011 at 05:41:22PM +0100, Ben Hutchings wrote:
On Thu, Aug 18, 2011 at 05:39:16PM +0200, Jan Möbius wrote:
sometimes rpc.statd binds to port 631 udp which is used by cups.
Therefore cups is unable to bind to its
Systems running SE Linux tend not to have this problem. In most cases the
daemons which use RPC services are not permitted to bind to any of the ports
that are reserved for services and therefore such a bind attempt fails with
EPERM, glibc will just decrement the port number and try again when
17 matches
Mail list logo
