From owner-freebsd-security@FreeBSD.ORG  Fri Sep 19 10:45:27 2003
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3105916A4B3
	for <freebsd-security@freebsd.org>;
	Fri, 19 Sep 2003 10:45:27 -0700 (PDT)
Received: from mail.broadpark.no (mail.broadpark.no [217.13.4.2])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 84E5343FE0
	for <freebsd-security@freebsd.org>;
	Fri, 19 Sep 2003 10:45:25 -0700 (PDT)	(envelope-from des@des.no)
Received: from smtp.des.no (37.80-203-228.nextgentel.com [80.203.228.37])
	by mail.broadpark.no (Postfix) with ESMTP
	id AB6D778CC5; Fri, 19 Sep 2003 19:45:24 +0200 (MEST)
Received: by smtp.des.no (Pony Express, from userid 666)
	id 720D099FC9; Fri, 19 Sep 2003 19:45:24 +0200 (CEST)
Received: from dwp.des.no (dwp.des.no [10.0.0.4])
	by smtp.des.no (Pony Express) with ESMTP
	id 9523899B49; Fri, 19 Sep 2003 19:45:19 +0200 (CEST)
Received: by dwp.des.no (Postfix, from userid 2602)
	id 6BBADB84A; Fri, 19 Sep 2003 19:45:19 +0200 (CEST)
To: "Devon H. O'Dell" <dodell@sitetronics.com>
References: <20030917084415.85385.qmail@web41808.mail.yahoo.com>
	<3F6820D9.9040702@sitetronics.com>
	<20030919125510.0BD5443FD7@mx1.FreeBSD.org>
	<3F6AFF42.2010403@sitetronics.com>
From: des@des.no (Dag-Erling =?iso-8859-1?q?Sm=F8rgrav?=)
Date: Fri, 19 Sep 2003 19:45:19 +0200
In-Reply-To: <3F6AFF42.2010403@sitetronics.com> (Devon H. O'Dell's message
 of "Fri, 19 Sep 2003 15:06:10 +0200")
Message-ID: <xzpvfrofz9s.fsf@dwp.des.no>
User-Agent: Gnus/5.090024 (Oort Gnus v0.24) Emacs/21.3 (berkeley-unix)
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: quoted-printable
X-Spam-Status: No, hits=-3.0 required=8.0
	tests=EMAIL_ATTRIBUTION,IN_REP_TO,QUOTED_EMAIL_TEXT,REFERENCES,
	      REPLY_WITH_QUOTES,USER_AGENT_GNUS_UA
	version=2.55
X-Spam-Level: 
X-Spam-Checker-Version: SpamAssassin 2.55 (1.174.2.19-2003-05-19-exp)
cc: freebsd-security@freebsd.org
cc: Vlad Galu <Vlad.Galu@rdsnet.ro>
Subject: Re: ftp
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Security issues [members-only posting]
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Sep 2003 17:45:27 -0000

"Devon H. O'Dell" <dodell@sitetronics.com> writes:
> > > Simply change net.inet.ip.portrange.hifirst and
> > > net.inet.ip.portrange.hilast, which default to the following values:
> > > net.inet.ip.portrange.hifirst: 49152
> > > net.inet.ip.portrange.hilast: 65535
> > I haven't examined the bsdftpd source, does it read the sysctl settings=
 and
> > behave accordingly ?
> Yes, this was my implication here. You can change these MIBs and
> restart the ftpd. More information is in the manpages on the subject ;)

All ftpd does is set a flag which causes the kernel to pick a port
number in the appropriate range, thus there is no need to restart ftpd
for the changes to take effect.

DES
--=20
Dag-Erling Sm=F8rgrav - des@des.no