19 May
2014
19 May
'14
8:50 p.m.
Hi all,
I just discovered that at least with Trinity 3.5.12.2, ksmserver is
listening on all interfaces by default. This could be a security
concern. Nmap detects it as the XFCE Session Manager.
It seems this problem was separately fixed in KDE:
https://bugs.kde.org/show_bug.cgi?id=154243
Was anyone aware of this? I guess it would be good to have a fix in
place for R14. Is anyone aware of a workaround?
Thanks,
Julius
19 May
19 May
9:55 p.m.
New subject: [trinity-devel] ksmserver listens on all interfaces
I just discovered that at least with Trinity 3.5.12.2,
ksmserver is
listening on all interfaces by default. This could be a security
concern. Nmap detects it as the XFCE Session Manager.
Running nmap localhost on my R14 systems do not reveal any related open ports. What is the
full syntax of the nmap command you ran?
Darrell
10:45 p.m.
New subject: [trinity-devel] ksmserver listens on all interfaces
Am Montag, 19. Mai 2014 schrieb Darrell:
$ nmap localhost -p1-65535
[...]
46657/tcp open unknown
$ netstat -altp
[...]
tcp 0 0 *:46657 *:* LISTEN
3206/ksmserver [kin
[...]
tcp6 0 0 [::]:40456 [::]:* LISTEN
3206/ksmserver [kin
So it' there on debian, too.
nik
--
Please do not email me anything that you are not comfortable also sharing with the NSA.
I just
discovered that at least with Trinity 3.5.12.2, ksmserver is
listening on all interfaces by default. This could be a security
concern. Nmap detects it as the XFCE Session Manager.
Running nmap localhost on my R14 systems do not reveal any related open ports. What is
the full syntax of the nmap command you ran? 
20 May
20 May
4:19 a.m.
New subject: [trinity-devel] ksmserver listens on all interfaces
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA224
Am Montag, 19. Mai 2014 schrieb Darrell:
$ nmap localhost -p1-65535
[...]
46657/tcp open unknown
$ netstat -altp
[...]
tcp 0 0 *:46657 *:* LISTEN
3206/ksmserver [kin
[...]
tcp6 0 0 [::]:40456 [::]:* LISTEN
3206/ksmserver [kin
So it' there on debian, too.
nik
Problem confirmed; fixed in GIT hash c383da9.
Thanks for bringing this to our attention!
Tim
I just
discovered that at least with Trinity 3.5.12.2, ksmserver is
listening on all interfaces by default. This could be a security
concern. Nmap detects it as the XFCE Session Manager.
Running nmap localhost on my R14 systems do not reveal any related open
ports. What is the full syntax of the nmap command you ran? -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iFYEARELAAYFAlN618UACgkQLaxZSoRZrGG4xgDgi4R449kLFz4iuNb37KyAZPLP
kXvHs4zUQJMYXwDgynMZD6Cecg3dwKtvV2tIKe+qTIc4imtfBhNKnw==
=fBzu
-----END PGP SIGNATURE-----
3839
days inactive
3840
days old
3 comments
4 participants
participants (4)
-
Darrell -
Dr. Nikolaus Klepp -
Julius Schwartzenberg -
Timothy Pearson