From owner-freebsd-current@freebsd.org Thu Dec 10 14:32:41 2015 Return-Path: Delivered-To: freebsd-current@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 5BD1C9D7411 for ; Thu, 10 Dec 2015 14:32:41 +0000 (UTC) (envelope-from dfr@rabson.org) Received: from mail-vk0-x234.google.com (mail-vk0-x234.google.com [IPv6:2607:f8b0:400c:c05::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 179B91811 for ; Thu, 10 Dec 2015 14:32:40 +0000 (UTC) (envelope-from dfr@rabson.org) Received: by vkay187 with SMTP id y187so83897684vka.3 for ; Thu, 10 Dec 2015 06:32:40 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rabson-org.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=1er81mBhAWfdN9gi/7AZrSk6xx4O+XTjEzxop4zMNgM=; b=zHRBrrtyC2suw43Gtez5EyhQN+YNyvPgiEYP1cl4NgUcjUKy0su5XZ4aKMesvIfy63 40XB/Dh6Aq3a6bmocsmahmx3J3Q9jVt6EOrFBqDtXAXuNzjhHAI6sxdCDi/5y6pJlir8 oOGgwnCpne2fx6rSfT/jLytHEWnEYcV+HE3CCAjxaAdvILD+epfHxNGbtdHWmRRiwVuy zHnVaatUZBdUGd0Kgz/KlJTpZAd6/2JpIOD4qd8uoqP5MXORs3f0AKXDpgk7tyIlT45m TNRCobi4dzh6mk8pyXFY2s/yHyiJElk0/4MYtpOK1uSmIauDmdku/X+i52/HuAqeDe6h Zxtw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=1er81mBhAWfdN9gi/7AZrSk6xx4O+XTjEzxop4zMNgM=; b=apr51y275PfTaHn8mqmvBPv8CfeQVmndeR6CTQvuMjh7l5WDM35srhF442zgGJ9Orh DWsaQGb6ECFwek7nE+9QjeCxyTonc8QqczAJC+MaQxHCY1UF5n97SCGNxH71Cg0VRyee DEYKgVz3KPBrTLL6dYTjh58EgfCukpjZ52DE6q4XhSrqb0DlWp+nVpdV+ze7QJPgdDzS V+DTuto23gTrFRXbpMiu5gxeCBN6xtnOPNxahaMYqJxMc2EpBIwMCSw3aV+KXs7Ny+Ca gmRR/QM2LwlYWdGbMQVVzNrQ9VlvamVZ6IvRV4LtjzndE7IKGC5oFiufsg1suCRFK81K 9b0A== X-Gm-Message-State: ALoCoQlfZIiVyDIBMfzWAv2qbwncBQk+ZTE1C2vh71PgN7Lv8m2QMWNp9nUmraCWT6J5bnpvvowbywLmPwmHmdT+WmUgFujctg== MIME-Version: 1.0 X-Received: by 10.129.80.138 with SMTP id e132mr4840869ywb.90.1449757959856; Thu, 10 Dec 2015 06:32:39 -0800 (PST) Received: by 10.37.209.216 with HTTP; Thu, 10 Dec 2015 06:32:39 -0800 (PST) In-Reply-To: <521574245.126601980.1449754639530.JavaMail.zimbra@uoguelph.ca> References: <1544725253.126601939.1449754636170.JavaMail.zimbra@uoguelph.ca> <521574245.126601980.1449754639530.JavaMail.zimbra@uoguelph.ca> Date: Thu, 10 Dec 2015 14:32:39 +0000 Message-ID: Subject: Re: RPC request sent to 127.0.0.1 becomes from other IP on machine From: Doug Rabson To: Rick Macklem Cc: freebsd-current Content-Type: text/plain; charset=UTF-8 X-Content-Filtered-By: Mailman/MimeDel 2.1.20 X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Dec 2015 14:32:41 -0000 I think a local socket is probably the best solution long term. Using a local socket also allows using filesystem permissions to control access which is required for gssd but not necessarily for nfsuserd. On 10 December 2015 at 13:37, Rick Macklem wrote: > Hi, > > Mark has reported a problem via email where the nfsuserd daemon sees > requests coming from an IP# assigned to the machine instead of 127.0.0.1. > Here's a snippet from his message: > Ok, I have Plex in a jail and when I scan the remote NFS file share the > *local* server's nfsuserd spams the logs. > Spamming the logs refers to the messages nfsuserd generates when it gets > a request from an address other than 127.0.0.1. > > I think the best solution is to switch nfsuserd over to using an AF_LOCAL > socket like the gssd uses, but that will take a little coding and probably > won't be MFCable. > > I've sent him the attached patch to try as a workaround. > > Does anyone happen to know under what circumstances the address 127.0.0.1 > gets replaced? > > And do you know if it will always be replaced with the same > address? > (I'm basically wondering if the workaround needs to be a list of IP > addresses > instead of a single address?) > > Thanks in advance for any help with this, rick > > > _______________________________________________ > freebsd-current@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org" >