2008-Jul-11
Coded and shared a minor patch to add net.inet.ip.randomport sysctl tunable (off by default) to enable random UDP source port. It would probably be good to enable on by default. It appears that the count begins below the maximum, so the maximum is only reached if ports are unavailable and loops back to the max. I am pretty sure that is the same with randomization and without randomization (before my patch). I have done numerous tests with this with also customizing net.inet.ip.anonportmin and net.inet.ip.anonportmax. (Not committed yet.)
Patched DragonFly's base for BIND security update. And committed it. It was a patch against DragonFly's 9.3.4. The patch was the fix from 9.3.5 to 9.3.5-P1. I named it as 9.3.4-P2 (my invented name).