Bug#362785: unreasonably restricts server port number range
On Sun, Apr 16, 2006 at 09:52:29PM -0400, Eric Dorland wrote: This is intentional, and doesn't happen in general. They just have a blacklist of ports that are commonly in use, to prevent firefox from being a platform to launch attacks against those common protocols. Port 6000 is used for the X protocol. See http://www.mozilla.org/projects/netlib/PortBanning.html. You can use the network.security.ports.banned.override pref to reenable it. OK, thanks! It would be useful to give this information and an exact recipe what to do in /usr/share/doc/firefox/README.Debian. My English is not very good, but I give it a try: To prevent Firefox from being used to launch attacks against other protocols, certain ports cannot be connected to by default. See http://www.mozilla.org/projects/netlib/PortBanning.html for further information. To allow the port numbers being used, add the following line to /usr/share/firefox/greprefs/all.js or ~/.firefox/default/random.slt/user.js: pref(network.security.ports.banned.override, 2049,4045,6000); -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#362785: unreasonably restricts server port number range
tags 362785 wontfix severity 362785 wishlist thanks * W. Borgert ([EMAIL PROTECTED]) wrote: Package: firefox Version: 1.5.dfsg+1.5.0.1-4 Severity: important Trying to access http://some-random-site:6000/ leads to This address is restricted This address uses a network port which is normally used for purposes other than Web browsing. Firefox has canceled the request for your protection. Try again. Trying again leads, of course, to the same message. Btw. lynx works fine on port 6000. This is intentional, and doesn't happen in general. They just have a blacklist of ports that are commonly in use, to prevent firefox from being a platform to launch attacks against those common protocols. Port 6000 is used for the X protocol. See http://www.mozilla.org/projects/netlib/PortBanning.html. You can use the network.security.ports.banned.override pref to reenable it. -- Eric Dorland [EMAIL PROTECTED] ICQ: #61138586, Jabber: [EMAIL PROTECTED] 1024D/16D970C6 097C 4861 9934 27A0 8E1C 2B0A 61E9 8ECF 16D9 70C6 -BEGIN GEEK CODE BLOCK- Version: 3.12 GCS d- s++: a-- C+++ UL+++ P++ L++ E++ W++ N+ o K- w+ O? M++ V-- PS+ PE Y+ PGP++ t++ 5++ X+ R tv++ b+++ DI+ D+ G e h! r- y+ --END GEEK CODE BLOCK-- signature.asc Description: Digital signature
Bug#362785: unreasonably restricts server port number range
Package: firefox Version: 1.5.dfsg+1.5.0.1-4 Severity: important Trying to access http://some-random-site:6000/ leads to This address is restricted This address uses a network port which is normally used for purposes other than Web browsing. Firefox has canceled the request for your protection. Try again. Trying again leads, of course, to the same message. Btw. lynx works fine on port 6000. -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.15-1-amd64-k8-smp Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Versions of packages firefox depends on: ii debianutils 2.15.3 Miscellaneous utilities specific t ii fontconfig2.3.2-1.1 generic font configuration library ii libatk1.0-0 1.11.3-1 The ATK accessibility toolkit ii libc6 2.3.6-3GNU C Library: Shared libraries an ii libcairo2 1.0.2-3The Cairo 2D vector graphics libra ii libfontconfig12.3.2-1.1 generic font configuration library ii libfreetype6 2.1.10-1 FreeType 2 font engine, shared lib ii libgcc1 1:4.1.0-1 GCC support library ii libglib2.0-0 2.10.1-2 The GLib library of C routines ii libgtk2.0-0 2.8.16-1 The GTK+ graphical user interface ii libidl0 0.8.6-1library for parsing CORBA IDL file ii libjpeg62 6b-12 The Independent JPEG Group's JPEG ii libpango1.0-0 1.12.0-2 Layout and rendering of internatio ii libpng12-01.2.8rel-5 PNG library - runtime ii libstdc++64.1.0-1The GNU Standard C++ Library v3 ii libx11-6 6.9.0.dfsg.1-6 X Window System protocol client li ii libxcursor1 1.1.3-1X cursor management library ii libxext6 6.9.0.dfsg.1-6 X Window System miscellaneous exte ii libxft2 2.1.8.2-5.1FreeType-based font drawing librar ii libxi66.9.0.dfsg.1-6 X Window System Input extension li ii libxinerama1 6.9.0.dfsg.1-6 X Window System multi-head display ii libxp66.9.0.dfsg.1-6 X Window System printing extension ii libxrandr26.9.0.dfsg.1-6 X Window System Resize, Rotate and ii libxrender1 1:0.9.0.2-1X Rendering Extension client libra ii libxt66.9.0.dfsg.1-6 X Toolkit Intrinsics ii psmisc22.2-1 Utilities that use the proc filesy ii zlib1g1:1.2.3-11 compression library - runtime firefox recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]