[OpenIndiana-discuss] Holding port numbers for servers
Michael Stapleton
michael.stapleton at techsologic.com
Mon Nov 5 17:07:45 UTC 2012
Should work unless something has been broken.
I have not tested it in OI.
Maybe the tunable can be set with ipadm? It can be in solaris 11.
If not, "Script It" is a safe bet.
Mike
On Mon, 2012-11-05 at 17:47 +0100, Jim Klimov wrote:
> Uh-huh, thanks Mike, "just what the doctor ordered" ;)
> No RFE then :)
>
> I take it, the tunable should be set early in OS startup, i.e.
> with some SMF service depending directly on "network" or in an
> rc*.d initscript?
>
> The ports thus reserved are subject to usual privileged-port
> routines and checks (be root or have the permissions via the
> RBAC net_privaddr, SMF and/or zone limit_priv props), right?
>
> Thanks again,
> //Jim
>
> On 2012-11-05 17:11, Michael Stapleton wrote:
> > Hi Jim,
> >
> > TCP/UDP tunable:
> >
> > #ndd /dev/tcp tcp_extra_priv_ports
> >
> > http://www.sean.de/Solaris/soltune.html#portnumbers
> >
> >
> >
> > Mike
> >
> >
> > On Mon, 2012-11-05 at 16:59 +0100, Jim Klimov wrote:
> >> I've (rarely) had problems starting some appservers because a
> >> network client running on the same OS was randomly issued the
> >> needed port number for its communications.
> >>
> >> I haven't seen this behavior for a while, so wanted to ask: are
> >> there now any provisions NOT to issue certain ports (i.e. list
> >> from /etc/services) when an applications opens a client socket?
> >> That is, the listed ports should only be issued if the app binds
> >> itself to this port number explicitly.
> >>
> >> Thanks,
> >> //Jim Klimov
>
> _______________________________________________
> OpenIndiana-discuss mailing list
> OpenIndiana-discuss at openindiana.org
> http://openindiana.org/mailman/listinfo/openindiana-discuss
More information about the OpenIndiana-discuss
mailing list