*** This bug is a security vulnerability *** Public security bug reported:
In a default installation, the daap plugin is enabled, and listens to port 3689 (daap). tcp 0 0 *:daap *:* LISTEN guest-43a0me 72019 - Ubuntu has a "no open ports by default" policy.[1][2] [1] https://bugs.launchpad.net/ubuntu/+source/banshee/+bug/753986 [2] https://wiki.ubuntu.com/SecurityTeam/Policies#No_Open_Ports Please resolve this e.g. by updating rhythmbox not to listen on a port by default, or documenting rhythmbox as an exception to the security policy. --- Ubuntu 16.04.4 LTS rhythmbox 3.3-1ubuntu7 ** Affects: banshee (Ubuntu) Importance: Undecided Status: New ** Information type changed from Public to Public Security -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1771196 Title: daap plugin opens port by default To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/banshee/+bug/1771196/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
