[rfc] [icedtea-web] restrict all connections to origins also to ports
Jiri Vanek
jvanek at redhat.com
Wed Oct 7 14:22:09 UTC 2015
On 10/07/2015 04:18 PM, Andrew Azores wrote:
> Hi,
>
> I think this looks mostly okay. One nit/question:
>
> On 06/10/15 08:12 AM, Jiri Vanek wrote:
>> + public static int sanitizePort(final int port) {
>> + if (port < 0) {
>> + return 80;
>> + }
>> + return port;
>> + }
>
> What if the connection isn't over HTTP? If it's HTTPS then should the default port returned here
> still be 80? What about for something even more different, like FTP?
>
Thats very valid point and very probably the reason why it was not there originally.
The entrance for the callig methods ara url, so following the
https://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers
should be ok.
J.
More information about the distro-pkg-dev
mailing list