Beefy Boxes and Bandwidth Generously Provided by pair Networks
Problems? Is your data what you think it is?
 
PerlMonks  

Re^2: HTTP::Daemon Security Question

by Crackers2 (Parson)
on Jan 06, 2009 at 18:12 UTC ( [id://734481]=note: print w/replies, xml ) Need Help??


in reply to Re: HTTP::Daemon Security Question
in thread HTTP::Daemon Security Question

Just because you use localhost as the server address, dosn't mean it won't accept connections from the internet.
I think you're wrong about that. I just did a quick check and when using localhost as server address, netstat shows 
[user@rack tmp]$ sudo netstat -tnlp | grep :80
tcp        0      0 127.0.0.1:80              0.0.0.0:*               
+    LISTEN      6634/perl

[download]
which means it will only accept connections coming in on the localhost IP. Packets going to port 80 from the external IP won't reach this server.

Replies are listed 'Best First'.
Re^3: HTTP::Daemon Security Question
by fullermd (Priest) on Jan 06, 2009 at 19:52 UTC
    which means it will only accept connections coming in on the localhost IP. Packets going to port 80 from the external IP won't reach this server.

    That's true as far as it goes, but it would still be a good idea to check the remote address.

    It's possible, depending on your system config, to get a packet coming from the outside aimed at 127.0.0.1. And of course there's no guarantee that the system you're running on hasn't been misconfigured so that 'localhost' ends up giving you an accessible IP.

[reply]
      Good point on the localhost configuration. I probably should do a check that localhost is properly configured and pointing to the right place. Thank you.
[reply]

In Section Seekers of Perl Wisdom

Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?

www.com | www.net | www.org
Node Status?
node history
Node Type: note [id://734481]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this?Last hourOther CB clients
Other Users?
Others taking refuge in the Monastery: (3)
As of 2024-04-19 22:42 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    No recent polls found