Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

clojure swank server opens public port?

Tags:

emacs

clojure

swank

(This question has been downvoted, which I find strange. How have I offended?)

Am I right to think that running a swank server usually opens port 4005 to the world, not bound to localhost-only connections?

So anyone hacking in a café is not only allowing passers-by to execute arbitrary code on their computer, but is giving them a nice interface to do it with.

It appears that when I run a swank server with either 'mvn clojure:swank', or 'lein swank', or (swank.swank/start-server "/tmp/yo")

then I get something like (thanks Mike!):

$lsof -i -P
java      11693 john   13r  IPv6 6701891      0t0  TCP *:34983 (LISTEN)

and indeed I can connect from an emacs running on another machine on the same network.

(swank.swank/start-server "/tmp/yo")

If I start the server by hand, it produces the following output

Connection opened on local port  34983
#<ServerSocket ServerSocket[addr=0.0.0.0/0.0.0.0,port=0,localport=34983]>

Whereas:

(swank.swank/start-server "/tmp/yo" :host "localhost")

produces:

Connection opened on local port  40368
#<ServerSocket ServerSocket[addr=localhost/127.0.0.1,port=0,localport=40368]>

Which seems more like I was expecting.

Is there any good reason for doing this?

Any ideas on how it the more conventional ways of starting it could be persuaded to only accept connections from local processes?

like image 994
John Lawrence Aspden Avatar asked Sep 19 '10 20:09

John Lawrence Aspden

1 Answers

Totally valid question.

After opening a slime server, you'll notice:

eames:~:% lsof -i -P | grep 4005
java      41477  mjd   33u  IPv6 0x0b8956d0      0t0  TCP [::127.0.0.1]:4005 (LISTEN)

The connection is listening on the local address at port 4005. This interface isn't exposed to the network, so other devices on the network can't connect to your slime server.

edit:

This was my result of starting swank using leiningen, which provides "localhost" as an argument to swank.swank/start-server. You may want to double check that the leiningen plugin is opening non-local ports.

You're right that swank opens the connection on every address if a host isn't explicitly provided. The relevant code is swank.util.net.sockets/make-server-socket, and this behavior is documented. I agree, it seems like the wrong default.

like image 119
Mike Douglas Avatar answered Oct 04 '22 05:10

Mike Douglas
Sign in to Comment

Related questions

How do I use emacs diff with spaces?
Emacs open another shell in current window
Show enclosing #ifdef blocks in Emacs
Is there a rails3-compatible emacs mode yet?
Emacs -- correctly indenting css code embedded within an html file
Emacs determining keyboard layout
Is there a good emacs plugin for Python just like ESS for R and slime for Lisp? [closed]
How to generate dynamic "Reply-To:" based on "Message-ID:"? [+detail]
Clojure's Emacs CIDER repl - environment variables from .profile are missing
Rebind digits for normal mode in evil
Modify verilog mode indentation
How do I get emacs cider (clojure mode) to use my test environment variables when running tests?
Which IDE are CLISP Programmers using?
Make Emacs ignore system keyboard layout
SE's OAuth workflow in Emacs
How to get htmlize.el work for project publishing in Emacs org-mode?
Gnu screen in emacs shell mode: how to fix color escape codes
How to delete contents of an HTML tag in Emacs
How to use org-mode "capture-refile" mechanism to build my own vocabulary?
Using GPG with org-mode

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!