You are quite right to be concerned about security. This is an issue that has been ignored to date, but will be important to address in the near future. I'm hoping that users who have more familiarity with this area than I do will make contributions.
When you start the jhs task it is listening on port 50000. This means that anybody who knows your IP address AND connects to port 50000 AND knows J has nasty access to your machine. This is not good in the long term and perhaps not even good in the short term. This can be convenient if you want access between machines on your local network. But could be a serious security problem. Most (at least I think and hope) users machines are behind a basic firewall that would prevent port sniffing by outsiders. Eventually (sooner rather than later) this will need attention. Some kind of login/password will be required. This would be passed to jhs when it is started and a browser connecting to the jhs port would have to login. This would be similar to gamail etc. A trivial change/enhancement to jhs would be to restrict connections to those from localhost (or the same subnet or whatever makes sense) and this perhaps should be the default jhs state. On Tue, Mar 23, 2010 at 7:02 PM, Matthew Brand <[email protected]>wrote: > I know it is probably a dumb question, but there is a message that says: > > " > Access from another machine: > http://xxx.xxx.x.x:50000/jijx > " > > Does this mean that anybody can see my J session if they have my IP > address? > PS I don't know anything about security/firewalls/IP addresses so sorry if > the answer is obviously no. > > On 23 March 2010 22:50, Sherlock, Ric <[email protected]> wrote: > > > > From: Eric Iverson > > > > > > The official J701 beta program starts now. > > > > > > See the beta page at the http://www.jsoftware.com > > > (Systems > Download and then on the right Other Versions > Beta) > > > > > > This announcement to programming, but all discussion should take place > > > in the beta forum. > > > > 32-bit Windows version installs fine. > > The ability to display inline plots (SVG & PDF) in the log is a nice > taste > > of things to come. > > > > The functionality of the jfile window is a nice improvement. It is much > > easier to navigate using the keyboard and takes fewer "clicks" to get > things > > done. > > > > Some more work formatting the jfile window will help convey the function > of > > the various bits. > > * the currently selected file/folder should be more prominent and a > > mouse-over tool tip could provide some feedback on what it is. > > * The "buttons" (links that fire the goaction verb) should be > > differentiated from "shortcuts" (links that fire the gosh, gofo or gofi > > verbs). The former could be formatted to look like buttons. > > * the functionality of the "new_name" button might be clearer if it was > > called "rename_to" > > * IMO it would be more natural for the ".." link to appear as the first > > item in the listing of the current folder, rather than as part of the > list > > of shortcuts. > > > > * It seems to me that it would be useful to group the various distinct > > parts of the page in <div> tags to aid with CSS formatting. > > > > ---------------------------------------------------------------------- > > For information about J forums see http://www.jsoftware.com/forums.htm > > > ---------------------------------------------------------------------- > For information about J forums see http://www.jsoftware.com/forums.htm > ---------------------------------------------------------------------- For information about J forums see http://www.jsoftware.com/forums.htm
