[Bug 227888] random port selection for daemons causes other daemons to fail

Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Sun, 19 Jan 2025 07:27:10 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=227888

--- Comment #4 from Martin Birgmeier <d8zNeCFG@aon.at> ---
Example of ypbind using the imap port, thereby blocking dovecot from starting:

[0]# lsof | grep imap
ypbind    1457       root    5u     IPv4    0xfffff8006d392000         0    
TCP *:imaps->*:* (LISTEN)
[130]# service ypbind restart
Stopping ypbind.
Starting ypbind.
[0]# service dovecot start
Starting dovecot.
[0]# 

The standard services should use their standard ports from /etc/services, maybe
trying a random port only if that should fail (which it should not, anyway).
The randomization for security reasons is outdated, scanning 1022 (or all)
ports of a host can be done in a few milliseconds nowadays. And the chances of
choosing some port which is not needed by any other program in a space of only
1022 quickly go to zero the more often (for the various programs) this is
needed.

-- Martin

-- 
You are receiving this mail because:
You are the assignee for the bug.