bugzilla-daemon at bugzilla
Oct 11, 2009, 3:45 AM
Post #1 of 2
(323 views)
Permalink
|
|
[Bug 5264] Specification of DNS-query source port range
|
|
https://issues.apache.org/SpamAssassin/show_bug.cgi?id=5264
Simon Arlott <spamassassin.bugzilla.apache.simon [at] arlott> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |spamassassin.bugzilla.apach
| |e.simon [at] arlott
--- Comment #4 from Simon Arlott <spamassassin.bugzilla.apache.simon [at] arlott> 2009-10-11 03:45:34 UTC ---
(In reply to comment #0)
> The file DnsResolver.pm contains code (sub conenct sock) which selects a random
> unprivileged (1024-65535) source port for DNS-queries.
>
> I propose two enhancements:
>
> 1) Source port range should be a config file option
> 2) Evaluate /proc/sys/net/ipv4/ip_local_ports if no range is specified in config
> file
>
> This should avoid problems with local firewalls/port filter which allows
> outbound traffic only from local_ports, but not from all unprivileged ports.
The patch to Bug 6221 should fix this for you as it'll cause the
ip_local_port_range to be used.
--
Configure bugmail: https://issues.apache.org/SpamAssassin/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
|
