PSA: TURN server ports - intent to limit

[Harald Alvestrand]

In investigating some situations, we've come to realize that configuring TURN server ports ought to be somewhat restricted.

Starting in Chrome 91, and possibly backporting into earlier versions as we verify that it doesn't break things, we intend to only permit connecting to port 443 and port numbers above 1024.

Tracking bug: https://crbug.com/webrtc/12497

Harald

[basar....@gmail.com]

This is only for the TURN interface right, not for the relay ports?

[Harald Alvestrand]

It only affects the port number that is part of the turn: URL, yes.

There is no influence on the port numbers (local or remote) that can be relayed using TURN.

--

---
You received this message because you are subscribed to the Google Groups "discuss-webrtc" group.
To unsubscribe from this group and stop receiving emails from it, send an email to discuss-webrt...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/discuss-webrtc/38aecbae-667f-4a05-a1a4-67b29419ae38n%40googlegroups.com.

[PhistucK]

Even though it is not in Blink, this is a web facing change, so it should be posted (even as just an announcement) to blink-dev as well, I think...

☆PhistucK

--

---
You received this message because you are subscribed to the Google Groups "discuss-webrtc" group.
To unsubscribe from this group and stop receiving emails from it, send an email to discuss-webrt...@googlegroups.com.

To view this discussion on the web visit https://groups.google.com/d/msgid/discuss-webrtc/CAOqqYVF-d5XK5XsHEFR%3DeY9Jw9J8f7m_WEHuxNAHRrDn1fymcA%40mail.gmail.com.

[PhistucK]

And a ChromeStatus entry would be nice...

☆PhistucK

[Harald Alvestrand]

Done, although the process steps don't seem to make much sense in this case.

To view this discussion on the web visit https://groups.google.com/d/msgid/discuss-webrtc/CABc02_LrUFicVs5-nhwFimKyYv7FcaxSaS2n5vqYaayATu0p5A%40mail.gmail.com.

[PhistucK]

Thank you, I agree an announcement is sufficient.

☆PhistucK

To view this discussion on the web visit https://groups.google.com/d/msgid/discuss-webrtc/CAOqqYVF3We47bnyz2cFK%3DAbK4U8rxSefH-wQVdf3qx6R7LaZYQ%40mail.gmail.com.