ZeroConf in Ubuntu Edgy

Trent Lloyd lathiat at bur.st
Fri Jun 23 02:15:59 BST 2006 

Ubuntu has a no-open-ports by-default policy, which means that any
mDNS/DNS-SD based discovery cannot be enabled by default.

There are discussions of an easy GUI to turn this functionality on,
and I would like to see that in edgy (both in Ubuntu & Kubuntu)
(as the spec below is talking about)

Avahi is relatively secure (or so I'd like to think :), but nothing
is perfect, and we have had a couple problems to date that I am aware of
where the daemon could be crashed remotely, in addition
it runs inside a chroot environment as a non-priviledged (avahi) user,
so any exploits are unlikely to get you too far, but obviously
still have the potential to be problematic.

As for the other side of zeroconf, network-manager handles dynamic
address assignments, however since we're still not using that 'zeroconf'
may be worth a look, however I beleive it also has some problems and may
be something that the dhcp client needs to hook to.

Trent

On Thu, Jun 22, 2006 at 10:36:06AM -0700, Krishna Sankar wrote:
> There have been questions around turning it on for current session and
> turning it off.
> 
> How does Apple handle this ? What is Apple's Rendezvous/Bonjour security
> model ? Couldn't we look at it and get inspirations ? ;o)
> 
> Cheers
> <k/> 
> 
> > -----Original Message-----
> > From: ubuntu-devel-bounces at lists.ubuntu.com 
> > [mailto:ubuntu-devel-bounces at lists.ubuntu.com] On Behalf Of 
> > Krishna Sankar
> > Sent: Thursday, June 22, 2006 10:09 AM
> > To: ubuntu-devel at lists.ubuntu.com
> > Subject: ZeroConf in Ubuntu Edgy
> > 
> > Hi all,
> > 
> > 	I have been following the ZeroConf for Kubuntu 
> > https://launchpad.net/distros/ubuntu/+spec/kubuntu-easy-zeroconf.
> > 
> > 	Where do we stand in terms of Ubuntu ? Would it be 
> > available in the default install ? Will it be turned on ? 
> > Naturally, before Ian jumps in, how will we handle the 
> > security issues ?
> > 
> > Cheers
> > </k>
> > 
> > 
> > --
> > ubuntu-devel mailing list
> > ubuntu-devel at lists.ubuntu.com
> > https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel
> 
> 
> -- 
> ubuntu-devel mailing list
> ubuntu-devel at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel

-- 
Trent Lloyd <lathiat at bur.st>
Bur.st Networking Inc.

More information about the ubuntu-devel mailing list