Ticket #1855 (closed enhancement: fixed)

Opened 10 years ago

Last modified 10 years ago

PulseAudio insecurely listens for TCP

Reported by: RuiSeabra Owned by: julian_chu
Priority: normal Milestone:
Component: Distro Version:
Severity: normal Keywords: pulseaudio security haspatch battery
Cc: julian_chu@… Blocked By:
Blocking: Estimated Completion (week):
HasPatchForReview: PatchReviewResult:
Reproducible: always

Description

Like in my previous 2 bugs, PulseAudio? listens for TCP without any need by default (why would an OpenMoko? by default be a remote audio server).

This improves security and reduces battery usage.

Attachments

secure_etc_pulse_session.patch (315 bytes) - added by RuiSeabra 10 years ago.
Make pulseaudio stop listening to TCP

Change History

Changed 10 years ago by RuiSeabra

Make pulseaudio stop listening to TCP

comment:1 Changed 10 years ago by zecke

  • Cc julian_chu@… added

Julian please take a look. I don't know on which interfaces it is listening but I'm fine with the default of only using "local" interfaces by default. Make sure that the configfiles are marked as conf files so we don't destroy user configs..

comment:2 Changed 10 years ago by zecke

  • Owner changed from openmoko-kernel to julian_chu
  • Component changed from System Software to Distro

comment:3 Changed 10 years ago by john_lee

  • Status changed from new to in_testing

commited as c51a82d10098e03b9c2aa72b044f228021afe3de

comment:4 Changed 10 years ago by zecke

  • Resolution set to fixed

QA is not going over these kind of bugs. netstat -ln looks sane for dropbear. thanks john and julian!

comment:5 Changed 10 years ago by zecke

  • Status changed from in_testing to closed

Next attempt to close them with the batch modify. (status and resolution needs to be set)

Note: See TracTickets for help on using tickets.