Bug 780282 (SOA-2685)

Summary: Restrict access of default port 31000 to JDBC and 31443 to Admin connections
Product: [JBoss] JBoss Enterprise SOA Platform 5 Reporter: Ramesh Reddy <rareddy>
Component: EDSAssignee: Steven Hawkins <shawkins>
Status: CLOSED NEXTRELEASE QA Contact:
Severity: high Docs Contact:
Priority: high    
Version: 5.1.0.ER5   
Target Milestone: ---   
Target Release: 5.1.0.ER6   
Hardware: Unspecified   
OS: Unspecified   
URL: http://jira.jboss.org/jira/browse/SOA-2685
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2011-02-08 16:49:06 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Ramesh Reddy 2010-12-14 18:54:27 UTC 
project_key: SOA

31000 is default connection port intended for JDBC connections. ex: jdbc:teiid<vdb>@mm://host:31000

31443 is default secured connection port intended for Admin connections ex: mms://<host>:31443

However, due to lack of restriction in the Teiid server, user can make a JDBC connection like "jdbc:teiid<vdb>@mms://host:31443", or make an Admin connection like "mm://localhost:31000" thus creates a confusion as to which form to use "mm" or "mms" and which port to use "31000" or "31443".

The reason 31443 originally created was to secure the Admin connections and to create a separate process thread pool as Admin calls are synchronous. Where are JDBC calls as asynchronous. Mixing them up might lead confusion and not to mention thread contention under heavy load. So, Teiid should restrict the use of 31000 to JDBC and 31443 to Admin traffic.
Comment 1 Van Halbert 2010-12-14 18:54:28 UTC 
Link: Added: This issue Cloned from TEIID-1387
Comment 2 Van Halbert 2010-12-14 18:54:48 UTC 
Security: Added: Public
Comment 3 Van Halbert 2010-12-16 21:53:19 UTC 
Teiid has committed the changes to the 7.1.x product branch and should be in the ER6 release.
Comment 4 Paul Nittel 2011-02-08 16:49:06 UTC 
Tested with ER9 and closed.