-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Monday 03 February 2003 04:01 am, Victor Denisov wrote: > Hmm, still hadn't received a reply through a mailing list, so I'm answering > by looking at the archive. > > Of course, all outgoing ports are open for an IP address that Freenet is > bound to. The problem is that Freenet seems to listen for _incoming_ > connections on absolutely random ports. I recall reading somewhere that
The port is selected randomly when you configure freenet for the first time and can be found in freenet.conf or freenet.ini. IIRC, it's 'listenPort', but I'm not sure. > this is a feature -Fred contacts another Freenet node with request for data > then drops TCP connection and waits for incoming one from that node, so as > to conserve TCP connections during long data searches and limit amount of > traffic and resources required for maintenance of "idle" connections. > > This seems wise, but only in case if a single port (or a known range of > ports) is used to handle such incoming connections. Basic security dictates > that _all_ ports which aren't in definite use should be closed, and if this > rule can't be followed with current Freenet operation, I'm afraid it could > be a real security problem for all more or less secure environments. > > That's why I've asked if a knows range of ports exists for Freenet. I know > Java a little bit, but I don't think I'll brave the code myself to find out > exact port ranges (or if they're defined at all). If they aren't defined, > maybe it would be possible to consider to make such an option? > > With best regards, > Victor Denisov. > > > _______________________________________________ > support mailing list > [EMAIL PROTECTED] > http://hawk.freenetproject.org/cgi-bin/mailman/listinfo/support -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD8DBQE+PjFTx533NjVSos4RAqTnAJ4p7S3NcNBpneusAIf6EQzSCagfbACdEIx6 aZjzfykIpZMNlTdVuGDuUUY= =dTtp -----END PGP SIGNATURE----- _______________________________________________ support mailing list [EMAIL PROTECTED] http://hawk.freenetproject.org/cgi-bin/mailman/listinfo/support
