Your message dated Sat, 24 Feb 2018 10:42:18 +0800
with message-id 
and subject line 
has caused the Debian Bug report #746586,
regarding minissdpd listens on all interfaces even when configured not to
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact

Debian Bug Tracking System
Contact with problems
--- Begin Message ---
Package: minissdpd
Version: 1.1.20120121-1
Severity: normal

Hash: SHA1

Tiger automatic auditing software alerted me that minissdpd was listening
on all network interfaces in the default configuration. I modified
the config to specify the IP address of the interface to listen on,
but Tiger still reports that minissdpd is listening everywhere. I only
realized this after seeing attempts in my syslog by hackers probing the
socket; obviously this service ought not to be listening on my Internet
interface. But closing it in the obvious way didn't work.

I did verify that minissdpd was running with the correct options:
$  ps axl|grep minissdpd|grep -v grep
1     0 12411     1  20   0   3952    84 -      Ss   ?          0:00 
/usr/sbin/minissdpd -i

Tiger's report:

# Checking listening processes
NEW: --WARN-- [lin002i] The process `minissdpd' is listening on socket 1900 
(UDP) on every interface.

- -- System Information:
Debian Release: 7.4
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/dash

Versions of packages minissdpd depends on:
ii  libc6  2.13-38+deb7u1

minissdpd recommends no packages.

minissdpd suggests no packages.

- -- Configuration Files:
/etc/default/minissdpd changed:

- -- no debconf information

Version: GnuPG v1.4.12 (GNU/Linux)


--- End Message ---
--- Begin Message ---
Closed since such option won't "increase the security" the way you
image, at least not in the program side under Linux network framework.

--- End Message ---

Reply via email to