DragonFly users List (threaded) for 2005-09
[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index][Thread Index]

Re: Portmap, -h, and /etc/hosts.allow

From:	"Simon 'corecode' Schubert" <corecode@xxxxxxxxxxxx>
Date:	Wed, 21 Sep 2005 01:58:18 +0200

Dave Hayes wrote:

Is there a reason that portmap opens a TCP socket bound to INADDR_ANY,
despite being told with the -h switch not to? The source code clearly
does this.


     -h      Specify specific IP addresses to bind to for UDP requests.
                                                          ^^^

Also, given a machine with two interfaces, 10.9.8.55 and 205.147.26.55
I've also noticed that adding

  portmap : 10.9.8.0/255.255.255.0 : allow
  portmap : ALL : deny

to the /etc/hosts.allow file will not block this TCP port from being
connected to via the 205.147.26.55 interface.

portmap doesn't use tcpwrappers (hosts.allow) but hosts_access.

I'd say this is a bug. Am I being too anal here?

yes :)

cheers
  simon

--
Serve - BSD     +++  RENT this banner advert  +++    ASCII Ribbon   /"\
Work - Mac      +++  space for low $$$ NOW!1  +++      Campaign     \ /
Party Enjoy Relax   |   http://dragonflybsd.org      Against  HTML   \
Dude 2c 2 the max   !   http://golden-apple.biz       Mail + News   / \

References:
- Portmap, -h, and /etc/hosts.allow
  - From: Dave Hayes

[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index][Thread Index]