[Bug 262341] New: mountd steals port
https://bugzilla.novell.com/show_bug.cgi?id=262341 Summary: mountd steals port Product: openSUSE 10.2 Version: Final Platform: x86 OS/Version: Linux Status: NEW Severity: Normal Priority: P5 - None Component: Basesystem AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: jengelh@gmx.de QAContact: qa@suse.de Please see my rant at http://lkml.org/lkml/2007/1/24/258 (I just hit this problem again today). The replies share one common answer: it's not a kernel problem, and I could not disagree. But, we need to address this. Hence this RFE for openSUSE. Trond wrote:
2) Then assign a bloody port number to mountd, and stick to it. Why do you think there is a '-p' command line option in the first place?
openSUSE actually has a MOUNTD_PORT entry in /etc/sysconfig/nfs (thankfully!) and I say we should set something there to make mountd *not* take up port 631. And please make someone aware of https://bugzilla.samba.org/show_bug.cgi?id=4350 Thank you. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=262341 mhorvath@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|bnc-team- |anicka@novell.com |screening@forge.provo.novell| |.com | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=262341 ro@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO Info Provider| |nfbrown@novell.com ------- Comment #2 from ro@novell.com 2007-04-12 15:41 MST ------- well, mountd does not yet support any option to _not_ take a specific port, and I don't see too much sense in locking it to one specifc one by default. Neil: any ideas ? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=262341 ------- Comment #3 from jengelh@gmx.de 2007-04-12 15:58 MST ------- You don't want to list all ports it should not step on. That list would become a little long. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=262341 nfbrown@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |nfbrown@novell.com Status|NEEDINFO |NEW Info Provider|nfbrown@novell.com | ------- Comment #4 from nfbrown@novell.com 2007-04-12 16:07 MST ------- I suspect that mountd doesn't need to bind to a privileged port, in which case we should change the code to use ports from the unassigned range. But short-term I don't see any problem in locking it to some unused port by default, though it should be easy for the admin to change. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=262341 ------- Comment #5 from jengelh@gmx.de 2007-04-12 17:07 MST ------- It could bind to 3128, hindering squid. Or 3306, mysql. Or perhaps even 2049. Same problem with unprivileged ports. (Except if you meant *high* unprivileged ports aka 32768+ or 50000+.) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=262341 ------- Comment #6 from nfbrown@novell.com 2007-04-12 17:24 MST ------- Yes, I mean high ports. Some range which is reserved as unassigned. i.e. just ask the kernel to bind to a free port. It will always choose one that the standards say will never be assigned. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=262341 ro@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |ASSIGNED ------- Comment #7 from ro@novell.com 2007-04-23 03:54 MST ------- Neil: any proposed code ? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=262341 ------- Comment #8 from nfbrown@novell.com 2007-04-23 16:50 MST ------- For nfs-utils: The svc_socket part of http://linux-nfs.org/cgi-bin/gitweb.cgi?p=nfs-utils;a=commitdiff;h=0210f16cf... The rest affects statd which SUSE10.2 doesn't include. That will stop mountd from using ports that it shouldn't. However it will be possible for an unprivileged user to unregister the port that mountd registered (though it is already possible for an unpriv user to unregister the lockd/statd ports, so maybe that isn't a big problem). That can be fixed with this patch for portmap. http://neil.brown.name/git?p=portmap;a=commitdiff;h=60c9c6bf96fb2436fc26f7ad... -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=262341#c9 --- Comment #9 from Sitsofe Wheeler <sitsofe@yahoo.com> 2007-08-16 23:24:06 MST --- There's also a bit of discussion on "port stealing" over in https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=103401 ... -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=262341 User jengelh@gmx.de added comment https://bugzilla.novell.com/show_bug.cgi?id=262341#c10 Jan Engelhardt <jengelh@gmx.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |RESOLVED Resolution| |FIXED --- Comment #10 from Jan Engelhardt <jengelh@gmx.de> 2008-10-23 07:31:06 MDT --- This is fixed according to comment #8. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=262341 User jengelh@gmx.de added comment https://bugzilla.novell.com/show_bug.cgi?id=262341#c11 Jan Engelhardt <jengelh@gmx.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |VERIFIED --- Comment #11 from Jan Engelhardt <jengelh@gmx.de> 2008-10-23 07:31:24 MDT --- And just verified too (11.0). -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=262341 User pbaudis@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=262341#c12 Petr Baudis <pbaudis@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |pbaudis@novell.com --- Comment #12 from Petr Baudis <pbaudis@novell.com> 2008-12-03 21:07:08 MST --- OBTW, I think this was actually bug 439146. ;-) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com