[FTPSERVER-420] When picking a passive port, use "random port" from the pool instead of "lowest port" - ASF JIRA

Voters

Watch issue

Watchers

Link

Clone

Update Comment Author

Replace String in Comment

Update Comment Visibility

Delete Comments

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.0.6, 1.1.0
Component/s: Core
Labels:
None

Description

As discussed on the mailing list < http://www.mail-archive.com/ftpserver-users@mina.apache.org/msg01635.html >, passive ports are allocated from the pool based on the lowest available port from the list. This may cause problems with some firewalls or clients that may not release the port as quickly as the server expects. It is also a minor security risk to provide an easily guessable port for passive connections.

Discussion on the list centered around other options to allocate ports, focusing on a random port assignment from the available pool.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Manage Attachments

PassivePorts.java.diff
16/Jun/11 18:57
5 kB
Allen Firstenberg
DataConnectionConfigurationFactory.java.diff
16/Jun/11 18:57
0.6 kB
Allen Firstenberg
PassivePorts.java
16/Jun/11 18:59
8 kB
Allen Firstenberg
PassivePortsTest.java
16/Jun/11 20:50
10 kB
Allen Firstenberg

Activity

Comment

This comment will be Viewable by All Users Viewable by All Users

Cancel

People

Assignee:: Niklas Therning

Reporter:: Allen Firstenberg

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 16/Jun/11 18:44

Updated:: 18/Jun/11 21:43

Resolved:: 18/Jun/11 21:43

Agile

View on Board

When picking a passive port, use "random port" from the pool instead of "lowest port"

Details

Description

Attachments

Attachments

Activity

People

Dates

Agile

Slack

Issue deployment