[Dxspider-support] spider and port 23

ON6HH Roland Huysentruyt on6hh at uba.be
Sat Jun 28 14:56:08 BST 2008


Ok Dirk

1. Don't go dead Dirk  ,we still need You a lot hi !!
    Since i migrated from red-hat to ubuntu i was not aware  spider was not 
running as "sysop".
    The command line was made to start from sysop but it did not work as it 
should.
    Starting the cluster automaticlly is complicated and  completely 
different dependent on the operating system.
    I am not a linux specialist but are running a succesfull cluster since 
17 years .
    Last posts on the forum helped me to solve the "sysop problem" tnx !
    Now i am running as sysop !.
2. The reason why I would like to use besides 8000 port 23 is because some 
users are
    using logprograms with default port 23 for cluster connections.It is not 
possible
    to use other port .... F.e. some older versions of dxbase have this 
problem.
3. Tnx for info only root can use below 1024 .
4. Tnx info abt iptables .I will try this out .

73,Roland;

on6hh at uba.be
------------------------------------------------------------
Roland Huysentruyt  Tel 051 303000
------------------------------------------------------------
----- Original Message ----- 
From: "Dirk Koopman G1TLH" <gb7tlh at dxcluster.org>
To: "The DXSpider Support list" <dxspider-support at dxcluster.org>
Sent: Saturday, June 28, 2008 11:16 AM
Subject: Re: [Dxspider-support] spider and port 23
>
> I'm going to be dead boring about this, because I have said this in the 
> past (and it's in the installation manual as well).
>
> 1. Don't run as root. Period. It's dangerous and I can't guarantee that 
> there are no exploits available for someone to take over your system 
> through DXSpider. I won't be held responsible if the worst happens because 
> a sysop ignores what the manual says and does it anyway.
>
> 2. Don't use port 23 because DXSpider is *NOT* a telnet server (i.e. a 
> server that provides a login shell to your box via the telnet protocol).
>
> 3. The reason only root works is because only root can bind to ports below 
> 1024.
>
> 3. If you still *really* want to do this then the only safe way is to use 
> iptables and do a redirect from port 23 to 8000. I personally do this with 
> my webservers. They never, ever, run as root, they run on some higher port 
> and I use shorewall (an iptables front end [available as a package in 
> Ubuntu]) to do both the firewalling and the redirection.
>
> Dirk G1TLH



> ON6HH Roland Huysentruyt wrote:
>> Hi all
>>  Now spider is started as "sysop" I do have a problem to use port 23 
>> besides 8000 .
>> On startup spider crasches ,"permission denied ",see below :
>>
>> 1214546695^starting listeners ...
>>
>> 1214546695^Internal port: localhost 27754 using IntMsg
>>
>> 1214546695^External Port: 193.191.136.222 8000 using ExtMsg::login
>>
>> 1214546695^IO::Socket::INET: Permission denied
>>
>> 1214546695^Could not create socket: Permission denied
>>
>> 1214546695^ at /spider/perl/Msg.pm line 447
>>
>> 1214546695^ Msg::new_server('ExtMsg', 193.191.136.222, 23, 
>> 'CODE(0x8434318)') called at /spider/perl/cluster.pl line 407
>>
>> Started as root it works.
>> Anyone has an idee how to solve this ?
>> Using  UBUNTU 7.10 server
>> 




More information about the Dxspider-support mailing list