[rfc] [icedtea-web] restrict all connections to origins also to ports
Andrew Azores
aazores at redhat.com
Wed Oct 7 14:18:00 UTC 2015
Hi,
I think this looks mostly okay. One nit/question:
On 06/10/15 08:12 AM, Jiri Vanek wrote:
> + public static int sanitizePort(final int port) {
> + if (port < 0) {
> + return 80;
> + }
> + return port;
> + }
What if the connection isn't over HTTP? If it's HTTPS then should the
default port returned here still be 80? What about for something even
more different, like FTP?
--
Thanks,
Andrew Azores
More information about the distro-pkg-dev
mailing list