You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@spamassassin.apache.org by bu...@bugzilla.spamassassin.org on 2007/01/01 13:41:05 UTC

[Bug 5264] New: Specification of DNS-query source port range

http://issues.apache.org/SpamAssassin/show_bug.cgi?id=5264

           Summary: Specification of DNS-query source port range
           Product: Spamassassin
           Version: 3.1.6
          Platform: All
        OS/Version: Linux
            Status: NEW
          Severity: enhancement
          Priority: P3
         Component: spamassassin
        AssignedTo: dev@spamassassin.apache.org
        ReportedBy: michael.letzgus@uni-bielefeld.de


The file DnsResolver.pm contains code (sub conenct sock) which selects a random
unprivileged (1024-65535) source port for DNS-queries.

I propose two enhancements:

1) Source port range should be a config file option
2) Evaluate /proc/sys/net/ipv4/ip_local_ports if no range is specified in config
file

This should avoid problems with local firewalls/port filter which allows
outbound traffic only from local_ports, but not from all unprivileged ports.



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

[Bug 5264] Specification of DNS-query source port range

Posted by bu...@bugzilla.spamassassin.org.

http://issues.apache.org/SpamAssassin/show_bug.cgi?id=5264


jm@jmason.org changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
   Target Milestone|Undefined                   |3.3.0






------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

[Bug 5264] Specification of DNS-query source port range

Posted by bu...@bugzilla.spamassassin.org.

http://issues.apache.org/SpamAssassin/show_bug.cgi?id=5264


shiva@sewingwitch.com changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |chris_craft_4@hotmail.com




------- Additional Comments From shiva@sewingwitch.com  2007-01-02 14:39 -------
*** Bug 5267 has been marked as a duplicate of this bug. ***



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

[Bug 5264] Specification of DNS-query source port range

Posted by bu...@bugzilla.spamassassin.org.

http://issues.apache.org/SpamAssassin/show_bug.cgi?id=5264





------- Additional Comments From jm@jmason.org  2007-01-01 04:59 -------
good point -- I would be happy to apply a patch that implements #1.  unlikely to
happen in 3.2.0 without a patch soon, though....



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.