Displaying 1 result from an estimated 1 matches for "ip_portrange_low".
2004 Nov 21
1
mac_portacl and automatic port allocation
...to bind to itself. This mechanismus is used by
number of programs, most commonly by ftp clients in active mode.
Unfortunately this 0 is checked by the mac_portacl(4) module and the
call to bind is refused. Rather simple fix would be to check if the
local port is 0 and user hasn't asked for IP_PORTRANGE_LOW and then
allow the call to trivially succeed. It can be controlled by a sysctl if
needed.
What do you think of the patch below?
Index: mac_portacl.c
===================================================================
RCS file: /home/fcvs/cvs/src/sys/security/mac_portacl/mac_portacl.c,v
retriev...