Yutaka Sato wrote:
> On 06/08/01(08:51) you dirk laurijssen <email@example.com> wrote
> in <_A1192@delegate-en.ML_>
> |the default behaviour is that an FTP-server returns a
> Basically, FTP-DeleGate with -PX option (port number X for control
> connection) creates a data connection with a port number X-1.
> Thus it should be enough to open X and X-1 so that FTP-DeleGate can
> accepts those ports.
What if the -PX is a range of ports? Will delegate still use the port connected on
by the client -1 to open a datachannel ?
> % delegated -P2049 SERVER=ftp
> % telnet localhost 2049
> 220 localhost PROXY-FTP server (DeleGate/7.4.0) ready.
> 227 Entering Passive Mode (127,0,0,1,8,0) DeleGate[X].
> The port number number 8,0 == 8*256+0 == 2048.
> |Currently the delegate (setupPASV in inets.c I believe) doesn't support
> |this, though it seems like an interesting feature to me.
> To tell the truth, there are at least two problems about the current
> implementation. Firstly, DeleGate does not retry to get X-1 port when
> it failed to get it. It can be a problem when used with a little heavy
> accesses. Secondly, if the port number X of the control connection is
> privileged one, the FTP-DeleGate must run with OWNER=root to bind the
> data connection to X-1.
If a process wants to use a lowport it has to be root, there is no way besides
that, but isn't it feasible to have delegate check on the port-assigning, like for
instance first X-1, if this fails X-2, etc... ?
> @ @ Yutaka Sato <firstname.lastname@example.org> http://www.delegate.org/y.sato/
> ( - ) National Institute of Advanced Industrial Science and Technology (AIST)
> _< >_ 1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan