[KARAF-6955] JMX: With rmiRegistryHost = 127.0.0.1, Karaf should listen only on 127.0.0.1 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 4.2.9
Fix Version/s: 4.2.11, 4.3.1
Component/s: karaf
Labels:
None

Target Version/s:

4.2.11, 4.3.1

Description

JMX - with rmiRegistryHost = 127.0.0.1 Karaf should listen only on 127.0.0.1

However, Karaf listens on 0.0.0.0 which opens up access to the network.

> config:list  "(service.pid=org.apache.karaf.management)"
----------------------------------------------------------------
Pid:            org.apache.karaf.management
BundleLocation: ?
Properties:
   daemon = true
   felix.fileinstall.filename = file:mykaraf/etc/org.apache.karaf.management.cfg
   jmxRealm = karaf
   jmxmpEnabled = false
   jmxmpHost = 127.0.0.1
   jmxmpObjectName = connector:name=jmxmp
   jmxmpPort = 9999
   jmxmpServiceUrl = service:jmx:jmxmp://127.0.0.1:9999
   objectName = connector:name=rmi
   rmiRegistryHost = 127.0.0.1
   rmiRegistryPort = 25031
   rmiServerHost = 127.0.0.1
   rmiServerPort = 25041
   service.pid = org.apache.karaf.management
   serviceUrl = service:jmx:rmi://127.0.0.1:25041/jndi/rmi://127.0.0.1:25031/karaf-mykaraf
   threaded = true

Using netstat one can see the listen address is not 127.0.0.1:

$ netstat -n -l -t|grep 25031
tcp      0      0 0.0.0.0:25031             0.0.0.0:*              LISTEN

Attachments

Issue Links

causes

KARAF-7096 When rmiServerHost is 127.0.0.1, RMIServerImpl_Stub still uses hostname's IP

Resolved

is related to

KARAF-5338 Unable to access the local JMX server on OSX

Resolved

KARAF-6917 Remove -Dcom.sun.management.jmxremote by default

Resolved

Activity

People

Assignee:: Jean-Baptiste Onofré

Reporter:: Martin Lichtin

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Dates

Created:: 11/Dec/20 12:55

Updated:: 11/Jun/21 07:27

Resolved:: 06/Mar/21 05:31