Re: "uselessly listens on localhost" RC

To: debian-release@lists.debian.org
Subject: Re: "uselessly listens on localhost" RC
From: Raphael Geissert <geissert@debian.org>
Date: Wed, 21 Oct 2009 16:55:19 -0500
Message-id: <[🔎] hbnvun$qe8$1@ger.gmane.org>
References: <[🔎] 20091018113824.GY19557@mails.so.argh.org>

Hi Andreas,

Andreas Barth wrote:
[...]
> Reasoning for this is that opening listening sockets with the network
> allows "better" ways to exploit security bugs than in the traditional
> unix filesystem.
> 

Erm, excuse me but that argument sounds rather silly to me.
Over the years there have been many daemons that have completely moved away
from unix domain sockets to using standard network sockets because it
provides more flexibility and supporting both means more code to maintain
and support.
If a daemon supports both methods I'd be more inclined to making the
application drop unix domain sockets support and invest more time improving
and securing the network sockets usage.

Cheers,
-- 
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net

Reply to:

Follow-Ups:
- Re: "uselessly listens on localhost" RC
  - From: "Francesco P. Lovergine" <frankie@debian.org>

References:
- "uselessly listens on localhost" RC
  - From: Andreas Barth <aba@not.so.argh.org>

Prev by Date: increasing default value of mmap_min_addr
Next by Date: Release goal: stop using Video4Linux version 1
Previous by thread: Re: "uselessly listens on localhost" RC
Next by thread: Re: "uselessly listens on localhost" RC
Index(es):
- Date
- Thread