From: Robert Gordon Date: Mon, 16 Nov 2009 18:25:02 +0000 (-0500) Subject: relax insecure option on mountd X-Git-Tag: nfs-utils-1-2-2-rc2~15 X-Git-Url: https://git.decadent.org.uk/gitweb/?a=commitdiff_plain;h=fa42ac173d1d7e37a4052471dfc15520a09f102e;p=nfs-utils.git relax insecure option on mountd In nfs-utils 1.2.0, I noticed that the insecure option validates that the client port is a subset of IPPORT_RESERVED as opposed to just validating it is a valid reserved port. The following proposed patch would correct that issue. Acked-by: Jeff Layton Signed-off-by: Robert Gordon Signed-off-by: Steve Dickson --- diff --git a/utils/mountd/auth.c b/utils/mountd/auth.c index 575f207..5a7ff8c 100644 --- a/utils/mountd/auth.c +++ b/utils/mountd/auth.c @@ -169,8 +169,7 @@ auth_authenticate_internal(char *what, struct sockaddr_in *caller, } } if (!(exp->m_export.e_flags & NFSEXP_INSECURE_PORT) && - (ntohs(caller->sin_port) < IPPORT_RESERVED/2 || - ntohs(caller->sin_port) >= IPPORT_RESERVED)) { + ntohs(caller->sin_port) >= IPPORT_RESERVED) { *error = illegal_port; return NULL; }