Modify

Opened 6 years ago

Closed 4 years ago

Last modified 4 years ago

#10028 closed defect (fixed)

Linux IGD leaves UPnP port accessible from outside by default

Reported by: zigo@… Owned by: developers
Priority: highest Milestone: Chaos Calmer 15.05
Component: packages Version: Backfire 10.03
Keywords: Cc:

Description

Hi,

After I heard about some Linksys routers leaving the UPnP port opened by default, I wanted to check my OpenWRT config. And a netstat -anple, and a test with nmap from outside showed that the Linux IGD UPnP daemon does the same: the port 49152 is opened by default to the outside, which really, shouldn't be the case, since this is a grave security issue.

Cheers,

Thomas Goirand (zigo)

Attachments (0)

Change History (4)

comment:1 Changed 6 years ago by KillaB

While you have Linux IGD installed, is there any chance you could test for a memory leak (Re: Ticket #7444)?

P.S. I'm running Backfire with miniupnpd - 1.5.20110302-6 and closing ports is not an issue as long as the client application supports it.

comment:2 Changed 6 years ago by KillaB

See ticket #8934 where I confirmed this issue is not present in libupnp - 1.6.8-1 from trunk snapshots.

comment:3 Changed 4 years ago by tripolar

  • Resolution set to fixed
  • Status changed from new to closed

should be fixed in latest trunk - please open a new bug report if this bug still exists.

comment:4 Changed 4 years ago by jow

  • Milestone changed from Backfire 10.03.2 to Chaos Calmer (trunk)

Milestone Backfire 10.03.2 deleted

Add Comment

Modify Ticket

Action
as closed .
The resolution will be deleted. Next status will be 'reopened'.
Author


E-mail address and user name can be saved in the Preferences.

 
Note: See TracTickets for help on using tickets.