On Sun, Oct 1, 2017 at 7:44 AM, Victor Porton <por...@narod.ru> wrote:
>
>
> I received no satisfactory answer.
> So I feel that there is no Debian policy on using port numbers.
> This policy should be added to Debian!
> It may be something like: "Debian packages (with default configuration) are
> allowed to bind ports 1-10000. Ports 10001-32000 are available for users."
> Please discuss.


Trying to return to the original subject....
If this is a server environment, you should already know which ports are
open and
in use in your network. There should be no mysteries. Files identifying
configured
port numbers, especially if you have numerous local values, should be
placed
under source-control and distributed/maintained by configuration management
software like salt, puppet, etc. This is the only way that good consistency
can
be maintained, but it affords you great flexibility.

WRT the "no Debian policy on using port numbers", the only authority, so
far as it
goes, is the IANA. Every site may choose to respect or ignore those values
within
the limits of their installed software base and configurability of
applications. Debian
can't really influence that state of affairs and any claims it stakes to
certain ports
are simply going to be ignored in most cases.


> --
> Victor Porton - http://portonvictor.org
>
>

Reply via email to