ZeroConf in Ubuntu Edgy
lathiat at bur.st
Fri Jun 23 02:15:59 BST 2006
Ubuntu has a no-open-ports by-default policy, which means that any
mDNS/DNS-SD based discovery cannot be enabled by default.
There are discussions of an easy GUI to turn this functionality on,
and I would like to see that in edgy (both in Ubuntu & Kubuntu)
(as the spec below is talking about)
Avahi is relatively secure (or so I'd like to think :), but nothing
is perfect, and we have had a couple problems to date that I am aware of
where the daemon could be crashed remotely, in addition
it runs inside a chroot environment as a non-priviledged (avahi) user,
so any exploits are unlikely to get you too far, but obviously
still have the potential to be problematic.
As for the other side of zeroconf, network-manager handles dynamic
address assignments, however since we're still not using that 'zeroconf'
may be worth a look, however I beleive it also has some problems and may
be something that the dhcp client needs to hook to.
On Thu, Jun 22, 2006 at 10:36:06AM -0700, Krishna Sankar wrote:
> There have been questions around turning it on for current session and
> turning it off.
> How does Apple handle this ? What is Apple's Rendezvous/Bonjour security
> model ? Couldn't we look at it and get inspirations ? ;o)
> > -----Original Message-----
> > From: ubuntu-devel-bounces at lists.ubuntu.com
> > [mailto:ubuntu-devel-bounces at lists.ubuntu.com] On Behalf Of
> > Krishna Sankar
> > Sent: Thursday, June 22, 2006 10:09 AM
> > To: ubuntu-devel at lists.ubuntu.com
> > Subject: ZeroConf in Ubuntu Edgy
> > Hi all,
> > I have been following the ZeroConf for Kubuntu
> > https://launchpad.net/distros/ubuntu/+spec/kubuntu-easy-zeroconf.
> > Where do we stand in terms of Ubuntu ? Would it be
> > available in the default install ? Will it be turned on ?
> > Naturally, before Ian jumps in, how will we handle the
> > security issues ?
> > Cheers
> > </k>
> > --
> > ubuntu-devel mailing list
> > ubuntu-devel at lists.ubuntu.com
> > https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel
> ubuntu-devel mailing list
> ubuntu-devel at lists.ubuntu.com
Trent Lloyd <lathiat at bur.st>
Bur.st Networking Inc.
More information about the ubuntu-devel