[jira] [Commented] (KARAF-6955) JMX: With rmiRegistryHost = 127.0.0.1, Karaf should listen only on 127.0.0.1

Fri, 11 Dec 2020 06:50:35 -0800 


    [ 
https://issues.apache.org/jira/browse/KARAF-6955?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17247951#comment-17247951
 ] 

Jean-Baptiste Onofré commented on KARAF-6955:
---------------------------------------------

Just quickly, using Karaf 4.2.9:
{code:java}
karaf@root()> config:list '(service.pid=org.apache.karaf.management)'
----------------------------------------------------------------
Pid:            org.apache.karaf.management
BundleLocation: ?
Properties:
   daemon = true
   felix.fileinstall.filename = 
file:/Users/jbonofre/Downloads/apache-karaf-4.2.9/etc/org.apache.karaf.management.cfg
   jmxRealm = karaf
   jmxmpEnabled = false
   jmxmpHost = 127.0.0.1
   jmxmpObjectName = connector:name=jmxmp
   jmxmpPort = 9999
   jmxmpServiceUrl = service:jmx:jmxmp://127.0.0.1:9999
   objectName = connector:name=rmi
   rmiRegistryHost = 127.0.0.1
   rmiRegistryPort = 1099
   rmiServerHost = 127.0.0.1
   rmiServerPort = 44444
   service.pid = org.apache.karaf.management
   serviceUrl = 
service:jmx:rmi://127.0.0.1:44444/jndi/rmi://127.0.0.1:1099/karaf-root
   threaded = true {code}
I just see:
{code:java}
tcp6 0 0 :::8101 :::* LISTEN 51023/java {code}
I changed ssh to use 127.0.0.1 instead of 0.0.0.0 (in 
{{etc/org.apache.karaf.shell.cfg}}).

Nothing bound on 0.0.0.0 (just 127.0.0.1). So I don't have the issue.

> JMX: With rmiRegistryHost = 127.0.0.1, Karaf should listen only on 127.0.0.1
> ----------------------------------------------------------------------------
>
>                 Key: KARAF-6955
>                 URL: https://issues.apache.org/jira/browse/KARAF-6955
>             Project: Karaf
>          Issue Type: Bug
>          Components: karaf
>    Affects Versions: 4.2.9
>            Reporter: Martin Lichtin
>            Assignee: Jean-Baptiste Onofré
>            Priority: Major
>
> JMX - with rmiRegistryHost = 127.0.0.1 Karaf should listen only on 127.0.0.1
> However, Karaf listens on 0.0.0.0 which opens up access to the network.
> {noformat}
> > config:list  "(service.pid=org.apache.karaf.management)"
> ----------------------------------------------------------------
> Pid:            org.apache.karaf.management
> BundleLocation: ?
> Properties:
>    daemon = true
>    felix.fileinstall.filename = 
> file:mykaraf/etc/org.apache.karaf.management.cfg
>    jmxRealm = karaf
>    jmxmpEnabled = false
>    jmxmpHost = 127.0.0.1
>    jmxmpObjectName = connector:name=jmxmp
>    jmxmpPort = 9999
>    jmxmpServiceUrl = service:jmx:jmxmp://127.0.0.1:9999
>    objectName = connector:name=rmi
>    rmiRegistryHost = 127.0.0.1
>    rmiRegistryPort = 25031
>    rmiServerHost = 127.0.0.1
>    rmiServerPort = 25041
>    service.pid = org.apache.karaf.management
>    serviceUrl = 
> service:jmx:rmi://127.0.0.1:25041/jndi/rmi://127.0.0.1:25031/karaf-mykaraf
>    threaded = true
> {noformat}
> Using netstat one can see the listen address is not 127.0.0.1:
> {noformat}
> $ netstat -n -l -t|grep 25031
> tcp      0      0 0.0.0.0:25031             0.0.0.0:*              LISTEN
> {noformat}



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Reply via email to