> A more interesting question is this: what are the odds that a user > process will accidentally grab the port number before the system > process gets to it? The notion of a "privileged" port number is > certainly preposterous; that said, putting services in a range that > ordinary applications tend not to use has its merits. There are two issues there, accidental collision between a dynamic port and a service port, and "voluntary" collision between applications trying to open the same port. The practical solution to the first problem are to start services and grab ports as part of the boot sequence, i.e. before user processes start, and start dynamic allocations at some high number (e.g. larger than 1024 or larger than 4096 or some admin defined value depending on system version and configuration). If there is a reserved range, then it is easy to start dynamic allocation outside the range. Starting services quickly also helps with the "voluntary collisions" between system services and applications, but is not foolproof. In any case, it does not help with collisions between applications, e.g. two applications trying to use the same port. What does help there is an easily accessible registration system, so application developers can easily "do the right thing", i.e. reserve a port and avoid collisions. Note the emphasis on "easily accessible": if there are too many hoops to jump through, the developers will likely just pick a number at random. -- Christian Huitema _______________________________________________ Ietf@xxxxxxxx https://www1.ietf.org/mailman/listinfo/ietf