[Kstars-devel] Server connection (solution?)
Gaetano Vocca
yagvoc-web at yahoo.it
Sun Mar 13 00:23:47 CET 2005
On Saturday 12 March 2005 20:54, Pablo de Vicente wrote:
> El Sábado, 12 de Marzo de 2005 19:49, Jasem Mutlaq escribió:
> > ----- Original Message -----
> > From: "Gaetano Vocca" <yagvoc-web at yahoo.it>
> > To: <p.devicente at wanadoo.es>; "KStars Development Mailing List"
> > <kstars-devel at kde.org>
> > Sent: Saturday, March 12, 2005 9:33 PM
> > Subject: Re: [Kstars-devel] Server connection (solution?)
> >
> > > I would say that is the problem. I do not know if that is the source
> > > of the problem, but what if you want that a server be connected from
> > > any client you _need_ to use "INADDR_ANY" as the argument for htonl()
> > > and this true for UDP and TCP sockets (as this case).
> > >
> > > I suppose Jasem will correct this bug in the CVS. Have you tried to
> > > change it to INADDR_ANY, recompile and test it?.
> > >
> > > regards
> > >
> > > Pablo.
> >
> > I'm really sorry. This is my mistake. I guess I should keep a log of
> > changes that I constantly forget. This is not a bug, but a security
> > measure that Dirk Muller introduced to the code. It's not safe to leave
> > your connections open wide to the net. You need to use port mapping in
> > ssh to bind your local client port to a remote one. The KStars manual
> > describes how to do this under "secure remote operation" item.
> >
> > Sorry for the confusion.
> >
> > Good luck,
> > Jasem
>
> Hello Jasem,
>
> I have read the manual section you mention and it is interesting. I did
> not know what port mapping was and how to use it with ssh for secure
> connections. I have a question, once the indiserver is started in the
> server, can you log out or do you need to keep the ssh connection open?
>
> So, that means that the code is correct as it is now, isn't it?
>
> regards
>
> Pablo.
I am sorry because I didn't check this manual chapter for a solution.
I see the point and I think that security is a good reason to accept only
local connections. Do you think it is possible to make it configurable
whether to accept only local connections or explicit remote ones?
Cheers
Gaetano
More information about the Kstars-devel
mailing list