Ports used by sks

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
15 messages Options
Reply | Threaded
Open this post in threaded view
|

Ports used by sks

Christoph Anton Mitterer-2
Hi.

I've seen that sks (other keyservers, too??) uses
hkp             11371/tcp   OpenPGP HTTP Keyserver
hkp             11371/udp   OpenPGP HTTP Keyserver

but also port 11370... should we apply for that port?
If so I could do the work if you like :-)

Best wishes,
--
Christoph Anton Mitterer
Ludwig-Maximilians-Universität München

[hidden email]
[hidden email]

_______________________________________________
Sks-devel mailing list
[hidden email]
http://lists.nongnu.org/mailman/listinfo/sks-devel

smime.p7s (6K) Download Attachment
Reply | Threaded
Open this post in threaded view
|

Re: Ports used by sks

Joseph Oreste Bruni-3
Is UDP really used?


On Feb 2, 2009, at 11:09 AM, Christoph Anton Mitterer wrote:

> Hi.
>
> I've seen that sks (other keyservers, too??) uses
> hkp             11371/tcp   OpenPGP HTTP Keyserver
> hkp             11371/udp   OpenPGP HTTP Keyserver
>
> but also port 11370... should we apply for that port?
> If so I could do the work if you like :-)
>
> Best wishes,
> --
> Christoph Anton Mitterer
> Ludwig-Maximilians-Universität München
>
> [hidden email]
> [hidden email]
> _______________________________________________
> Sks-devel mailing list
> [hidden email]
> http://lists.nongnu.org/mailman/listinfo/sks-devel



_______________________________________________
Sks-devel mailing list
[hidden email]
http://lists.nongnu.org/mailman/listinfo/sks-devel
Reply | Threaded
Open this post in threaded view
|

Re: Ports used by sks

Ryan Hunt-3
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

11371 - De facto Key Server Port (hkp)
11370 - SKS Peering port (required to talk to other SKS servers)

You'll also find a lot of key servers running on 80 (HTTP) for web
browsers, I even offer it on 443 (HTTPS)

According to /etc/services HTTP uses both TCP & UDP, given that HKP uses
HTTP I would have to presume that UDP is required (might not be for
peering however)

- -R

Joseph Oreste Bruni wrote:

> Is UDP really used?
>
>
> On Feb 2, 2009, at 11:09 AM, Christoph Anton Mitterer wrote:
>
>> Hi.
>>
>> I've seen that sks (other keyservers, too??) uses
>> hkp             11371/tcp   OpenPGP HTTP Keyserver
>> hkp             11371/udp   OpenPGP HTTP Keyserver
>>
>> but also port 11370... should we apply for that port?
>> If so I could do the work if you like :-)
>>
>> Best wishes,
>> --
>> Christoph Anton Mitterer
>> Ludwig-Maximilians-Universität München
>>
>> [hidden email]
>> [hidden email]
>> _______________________________________________
>> Sks-devel mailing list
>> [hidden email]
>> http://lists.nongnu.org/mailman/listinfo/sks-devel
>
>
>
> _______________________________________________
> Sks-devel mailing list
> [hidden email]
> http://lists.nongnu.org/mailman/listinfo/sks-devel

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkmHU2kACgkQIcAiq3SnceEqeACfarek+2gU/X7Q9DXJe7DB4Oi/
zZMAn0UEb4iDLvsnLXfN3KvIWZOpeGMT
=2CFT
-----END PGP SIGNATURE-----


_______________________________________________
Sks-devel mailing list
[hidden email]
http://lists.nongnu.org/mailman/listinfo/sks-devel
Reply | Threaded
Open this post in threaded view
|

Re: Ports used by sks

David Shaw
In reply to this post by Joseph Oreste Bruni-3
On Mon, Feb 02, 2009 at 11:15:04AM -0700, Joseph Oreste Bruni wrote:
> Is UDP really used?

No.  The way the IETF assigns numbers, if you get the TCP number, you
get the UDP number with it.

David


_______________________________________________
Sks-devel mailing list
[hidden email]
http://lists.nongnu.org/mailman/listinfo/sks-devel
Reply | Threaded
Open this post in threaded view
|

Re: Ports used by sks

Joseph Oreste Bruni-3

On Feb 2, 2009, at 1:19 PM, David Shaw wrote:

> On Mon, Feb 02, 2009 at 11:15:04AM -0700, Joseph Oreste Bruni wrote:
>> Is UDP really used?
>
> No.  The way the IETF assigns numbers, if you get the TCP number, you
> get the UDP number with it.
>
> David

Except for 514.

:)

I'm guessing this is the exception that proves the rule?







_______________________________________________
Sks-devel mailing list
[hidden email]
http://lists.nongnu.org/mailman/listinfo/sks-devel
Reply | Threaded
Open this post in threaded view
|

Re: Ports used by sks

David Shaw
On Mon, Feb 02, 2009 at 01:25:55PM -0700, Joseph Oreste Bruni wrote:

>
> On Feb 2, 2009, at 1:19 PM, David Shaw wrote:
>
>> On Mon, Feb 02, 2009 at 11:15:04AM -0700, Joseph Oreste Bruni wrote:
>>> Is UDP really used?
>>
>> No.  The way the IETF assigns numbers, if you get the TCP number, you
>> get the UDP number with it.
>>
>> David
>
> Except for 514.
>
> :)
>
> I'm guessing this is the exception that proves the rule?

The policy didn't exist yet when some of the early protocols got their
port numbers.  Certainly for the past 10 years or so, if you got one,
you got the other.  At least, that's what I was told when I registered
HKP (port 11371).

David


_______________________________________________
Sks-devel mailing list
[hidden email]
http://lists.nongnu.org/mailman/listinfo/sks-devel
Reply | Threaded
Open this post in threaded view
|

Re: Ports used by sks

Christoph Anton Mitterer-2
On Mon, 2009-02-02 at 15:30 -0500, David Shaw wrote:
> The policy didn't exist yet when some of the early protocols got their
> port numbers.  Certainly for the past 10 years or so, if you got one,
> you got the other.  At least, that's what I was told when I registered
> HKP (port 11371).
Yes,... and for other protocols,.. you'd have to apply specifically...
(e.g. sctp).

Anyway,.. should I apply for it now? I mean 11370?

hkp-server             11370/tcp   OpenPGP HTTP Keyserver reconciliation
hkp-server             11370/udp   OpenPGP HTTP Keyserver reconciliation

or

hkp-recon              11370/tcp   OpenPGP HTTP Keyserver reconciliation
hkp-recon              11370/udp   OpenPGP HTTP Keyserver reconciliation

or

hkp-sync              11370/tcp   OpenPGP HTTP Keyserver synchronisation
hkp-sync              11370/udp   OpenPGP HTTP Keyserver synchronisation

or anything else?

Best wishes,
--
Christoph Anton Mitterer
Ludwig-Maximilians-Universität München

[hidden email]
[hidden email]

_______________________________________________
Sks-devel mailing list
[hidden email]
http://lists.nongnu.org/mailman/listinfo/sks-devel

smime.p7s (6K) Download Attachment
Reply | Threaded
Open this post in threaded view
|

Re: Ports used by sks

David Shaw
On Feb 2, 2009, at 5:44 PM, Christoph Anton Mitterer wrote:

> On Mon, 2009-02-02 at 15:30 -0500, David Shaw wrote:
>> The policy didn't exist yet when some of the early protocols got  
>> their
>> port numbers.  Certainly for the past 10 years or so, if you got one,
>> you got the other.  At least, that's what I was told when I  
>> registered
>> HKP (port 11371).
> Yes,... and for other protocols,.. you'd have to apply specifically...
> (e.g. sctp).
>
> Anyway,.. should I apply for it now? I mean 11370?

No.  You should have a document specifying what the port actually is  
and the protocol that is used on the port before you claim it.  There  
is a spec for 11371.  You need a spec for 11370.

Also, isn't the port changeable on a per-peer basis in SKS?  If so,  
there is no point in registering the port at all, as setting up a new  
peer is a manual operation.  A SKS instance doesn't need to know a  
well-known port to become a peer.

David



_______________________________________________
Sks-devel mailing list
[hidden email]
http://lists.nongnu.org/mailman/listinfo/sks-devel
Reply | Threaded
Open this post in threaded view
|

Re: Ports used by sks

Christoph Anton Mitterer-2
On Mon, 2009-02-02 at 19:21 -0500, David Shaw wrote:
> No.  You should have a document specifying what the port actually is  
> and the protocol that is used on the port before you claim it.  There  
> is a spec for 11371.  You need a spec for 11370.

I was aware of that process :-)


> Also, isn't the port changeable on a per-peer basis in SKS?  If so,  
> there is no point in registering the port at all, as setting up a new  
> peer is a manual operation.

Well but this is also the case with the 11371 port, and basically with
most other protocols, too, isn't it?


>   A SKS instance doesn't need to know a  
> well-known port to become a peer.

Well it was just an idea, when I saw that probably most keyservers
sticked with the default (11370) and this was still unassigned.

I didn't intend to step on someones feet :)

btw: I was not about to register a port number in the well-known
range ;)


Best wishes,
--
Christoph Anton Mitterer
Ludwig-Maximilians-Universität München

[hidden email]
[hidden email]

_______________________________________________
Sks-devel mailing list
[hidden email]
http://lists.nongnu.org/mailman/listinfo/sks-devel

smime.p7s (6K) Download Attachment
Reply | Threaded
Open this post in threaded view
|

Re: Ports used by sks

David Shaw
On Feb 2, 2009, at 7:30 PM, Christoph Anton Mitterer wrote:

>> Also, isn't the port changeable on a per-peer basis in SKS?  If so,
>> there is no point in registering the port at all, as setting up a new
>> peer is a manual operation.
>
> Well but this is also the case with the 11371 port, and basically with
> most other protocols, too, isn't it?

No, the 11371 port is needed because it is part of the HKP protocol,  
just like 80 is part of the HTTP protocol.  11370, on the other hand,  
is just some port that SKS uses.  It's not in use by clients.  That  
port is manually configured.

David



_______________________________________________
Sks-devel mailing list
[hidden email]
http://lists.nongnu.org/mailman/listinfo/sks-devel
Reply | Threaded
Open this post in threaded view
|

Re: Ports used by sks

Andy Ruddock-2
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

David Shaw wrote:

> On Feb 2, 2009, at 7:30 PM, Christoph Anton Mitterer wrote:
>
>>> Also, isn't the port changeable on a per-peer basis in SKS?  If so,
>>> there is no point in registering the port at all, as setting up a new
>>> peer is a manual operation.
>>
>> Well but this is also the case with the 11371 port, and basically with
>> most other protocols, too, isn't it?
>
> No, the 11371 port is needed because it is part of the HKP protocol,
> just like 80 is part of the HTTP protocol.  11370, on the other hand, is
> just some port that SKS uses.  It's not in use by clients.  That port is
> manually configured.

Isn't port 80 simply the default port used by http, certainly it's not
uncommon to use other ports (8080 springing to mind).
The http spec (rfc2616) says:
"The default port is TCP 80 [19], but other ports can be used."
[19] is a pointer to rfc1700 - assigned numbers.

- --
Andy Ruddock
- ------------
[hidden email] (GPG Key ID 0xA622D452)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkmH62wACgkQfSkWkaYi1FJP9gCfXkNBm2tikNBaxbfPn3MLrMKt
/40An2JXYmZ4wTxwPaDMU3NuUCiEvxvR
=zMPZ
-----END PGP SIGNATURE-----


_______________________________________________
Sks-devel mailing list
[hidden email]
http://lists.nongnu.org/mailman/listinfo/sks-devel
Reply | Threaded
Open this post in threaded view
|

Re: Ports used by sks

David Shaw
On Feb 3, 2009, at 2:00 AM, Andy Ruddock wrote:

> David Shaw wrote:
>> On Feb 2, 2009, at 7:30 PM, Christoph Anton Mitterer wrote:
>>
>>>> Also, isn't the port changeable on a per-peer basis in SKS?  If so,
>>>> there is no point in registering the port at all, as setting up a  
>>>> new
>>>> peer is a manual operation.
>>>
>>> Well but this is also the case with the 11371 port, and basically  
>>> with
>>> most other protocols, too, isn't it?
>>
>> No, the 11371 port is needed because it is part of the HKP protocol,
>> just like 80 is part of the HTTP protocol.  11370, on the other  
>> hand, is
>> just some port that SKS uses.  It's not in use by clients.  That  
>> port is
>> manually configured.
>
> Isn't port 80 simply the default port used by http, certainly it's not
> uncommon to use other ports (8080 springing to mind).
> The http spec (rfc2616) says:
> "The default port is TCP 80 [19], but other ports can be used."
> [19] is a pointer to rfc1700 - assigned numbers.

Exactly.  Port 80 is the default port for http just like 11371 is the  
default port for HKP.  So if you said "hkp://my.keyserver" it would be  
on port 11371.  This saves users from having to know that the port is  
11371, just like users going to a web page don't need to remember to  
do something like "http://blahblah:80".  Port 11370 is not user visible.

David



_______________________________________________
Sks-devel mailing list
[hidden email]
http://lists.nongnu.org/mailman/listinfo/sks-devel
Reply | Threaded
Open this post in threaded view
|

Re: Ports used by sks

Christoph Anton Mitterer-2
On Tue, 2009-02-03 at 08:35 -0500, David Shaw wrote:
> Port 11370 is not user visible.
Portnumbers aren't just for end user visible standard-ports...


Regards,
--
Christoph Anton Mitterer
Ludwig-Maximilians-Universität München

[hidden email]
[hidden email]

_______________________________________________
Sks-devel mailing list
[hidden email]
http://lists.nongnu.org/mailman/listinfo/sks-devel

smime.p7s (6K) Download Attachment
Reply | Threaded
Open this post in threaded view
|

Re: Ports used by sks

David Shaw
On Feb 3, 2009, at 9:05 AM, Christoph Anton Mitterer wrote:

> On Tue, 2009-02-03 at 08:35 -0500, David Shaw wrote:
>> Port 11370 is not user visible.
> Portnumbers aren't just for end user visible standard-ports...

Look, I give up.  You really really want to register it.  It's cool to  
register stuff.  Go ahead.  I can't stop you.

The question you asked is whether you *should* register it.  The  
answer for that is still 'no', you shouldn't.  You can keep hammering  
away, but the answer will still be no, you shouldn't.  You don't  
understand, and don't want to understand, the issue involved.

David



_______________________________________________
Sks-devel mailing list
[hidden email]
http://lists.nongnu.org/mailman/listinfo/sks-devel
Reply | Threaded
Open this post in threaded view
|

Re: Ports used by sks

Christoph Anton Mitterer-2
On Tue, 2009-02-03 at 09:28 -0500, David Shaw wrote:
> Look, I give up.  You really really want to register it.  It's cool to  
> register stuff.  Go ahead.  I can't stop you.
No I don't want to.... it was just an idea, and I've already gave up
before. Just wanted to add that numbers are not only assigned for end
user protocols like http...


--
Christoph Anton Mitterer
Ludwig-Maximilians-Universität München

[hidden email]
[hidden email]

_______________________________________________
Sks-devel mailing list
[hidden email]
http://lists.nongnu.org/mailman/listinfo/sks-devel

smime.p7s (6K) Download Attachment