network-manager main inclusion report
Christian Bjälevik
nafallo at magicalforest.se
Fri Jul 1 15:31:57 CDT 2005
fre 2005-07-01 klockan 21:25 +0200 skrev Ondrej Sury:
> On Fri, 2005-07-01 at 10:55 +1000, Jeff Waugh wrote:
> > The configuration used for BIND by NetworkManager is minimal and
> > secure, so it's not a huge deal.
>
> Are you sure? On clean install (output of netstat -nlp | grep named):
>
> tcp 0 0 192.168.1.2:53 0.0.0.0:* LISTEN 8444/named
> tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN 8444/named
> tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN 8444/named
> tcp6 0 0 ::1:953 :::* LISTEN 8444/named
> udp 0 0 0.0.0.0:32777 0.0.0.0:* 8444/named
> udp 0 0 0.0.0.0:32779 0.0.0.0:* 8705/named
> udp 0 0 0.0.0.0:32781 0.0.0.0:* 9399/named
> udp 0 0 127.0.0.1:53 0.0.0.0:* 9399/named
> udp 0 0 127.0.0.1:53 0.0.0.0:* 8705/named
> udp 0 0 192.168.1.2:53 0.0.0.0:* 8444/named
> udp 0 0 127.0.0.1:53 0.0.0.0:* 8444/named
> udp6 0 0 :::32778 :::* 8444/named
> udp6 0 0 :::32780 :::* 8705/named
> udp6 0 0 :::32782 :::* 9399/named
>
> If it's secure, then why the hell it does listen on all possible ports
> and possible interfaces I can think of?
>
> It should just use udp/127.0.0.1:53 and nothing more in this kind of
> setup. Well, could you please at least think of Bastien's proposal to
> use nscd? :-)
>
> Ondrej.
> --
> Ondrej Sury <ondrej at sury.org>
>
>
Might be because you run three instances off the program? Only pid 8444
should be in that output :-).
Sincererly,
/Christian
More information about the ubuntu-devel
mailing list