开发者

is using a third party to serve localhost subdomains a security risk?

开发者 https://www.devze.com 2023-02-19 02:09 出处:网络
I\'ve been following Ryan Bates Railscast on Subdomains http://railscasts.com/episodes/221-subdomains-in-rails-3 and using lvh.me to serve localhost subdomains as detailed in the railscast.

I've been following Ryan Bates Railscast on Subdomains http://railscasts.com/episodes/221-subdomains-in-rails-3 and using lvh.me to serve localhost subdomains as detailed in the railscast.

Today I issued 开发者_开发百科'lsof | grep IPv4' to see my running processes, and I noticed the following entries:

...
Finder      121 nellboy    8u    IPv4 0x7cade64       0t0       TCP lvh.me:58803->lvh.me:26164 (ESTABLISHED)
...
Dropbox     131 nellboy   24u    IPv4 0x7cb866c       0t0       TCP lvh.me:26164->lvh.me:58803 (ESTABLISHED)
...
GoogleTal 26427 nellboy   27u    IPv4 0xbc3666c       0t0       TCP lvh.me:64279 (LISTEN)
GoogleTal 26427 nellboy   30u    IPv4 0x9152270       0t0       TCP lvh.me:64279->lvh.me:64280 (ESTABLISHED)
ruby      54081 nellboy    4u    IPv4 0xbc36a68       0t0       TCP lvh.me:sunwebadmins (LISTEN)
...
Google    57647 nellboy   24u    IPv4 0x7539a68       0t0       TCP lvh.me:64280->lvh.me:64279 (ESTABLISHED)

I'm wondering why lvh.me is listed with my dropbox, my google account etc.etc. Is this a security risk?, should I be worried?

Thanks in advance

Paul


I assume at some point in that video, you add an entry like:

127.0.0.1 lvh.me

to your /etc/hosts file.

This just adds a new name for your local system.

Check your output again with lsof -n | grep IPv4 or netstat -anp, and you will probably see that all those lvh.me:26146 turn into 127.0.0.1:26146.

If my assumption is correct, none of the connections you pasted actually leave your local machine. The two listening sockets cannot accept connections except ones initiated on your local machine.

0

精彩评论

暂无评论...
验证码 换一张
取 消