Can you randomise the port number? On 23 March 2010 23:17, Eric Iverson <[email protected]> wrote:
> You are quite right to be concerned about security. This is an issue that > has been ignored to date, but will be important to address in the near > future. I'm hoping that users who have more familiarity with this area than > I do will make contributions. > > When you start the jhs task it is listening on port 50000. This means that > anybody who knows your IP address AND connects to port 50000 AND knows J > has > nasty access to your machine. This is not good in the long term and perhaps > not even good in the short term. > > This can be convenient if you want access between machines on your local > network. But could be a serious security problem. > > Most (at least I think and hope) users machines are behind a basic firewall > that would prevent port sniffing by outsiders. > > Eventually (sooner rather than later) this will need attention. Some kind > of > login/password will be required. This would be passed to jhs when it is > started and a browser connecting to the jhs port would have to login. This > would be similar to gamail etc. > > A trivial change/enhancement to jhs would be to restrict connections to > those from localhost (or the same subnet or whatever makes sense) and this > perhaps should be the default jhs state. > > On Tue, Mar 23, 2010 at 7:02 PM, Matthew Brand <[email protected] > >wrote: > > > I know it is probably a dumb question, but there is a message that says: > > > > " > > Access from another machine: > > http://xxx.xxx.x.x:50000/jijx > > " > > > > Does this mean that anybody can see my J session if they have my IP > > address? > > PS I don't know anything about security/firewalls/IP addresses so sorry > if > > the answer is obviously no. > > > > On 23 March 2010 22:50, Sherlock, Ric <[email protected]> wrote: > > > > > > From: Eric Iverson > > > > > > > > The official J701 beta program starts now. > > > > > > > > See the beta page at the http://www.jsoftware.com > > > > (Systems > Download and then on the right Other Versions > Beta) > > > > > > > > This announcement to programming, but all discussion should take > place > > > > in the beta forum. > > > > > > 32-bit Windows version installs fine. > > > The ability to display inline plots (SVG & PDF) in the log is a nice > > taste > > > of things to come. > > > > > > The functionality of the jfile window is a nice improvement. It is much > > > easier to navigate using the keyboard and takes fewer "clicks" to get > > things > > > done. > > > > > > Some more work formatting the jfile window will help convey the > function > > of > > > the various bits. > > > * the currently selected file/folder should be more prominent and a > > > mouse-over tool tip could provide some feedback on what it is. > > > * The "buttons" (links that fire the goaction verb) should be > > > differentiated from "shortcuts" (links that fire the gosh, gofo or gofi > > > verbs). The former could be formatted to look like buttons. > > > * the functionality of the "new_name" button might be clearer if it > was > > > called "rename_to" > > > * IMO it would be more natural for the ".." link to appear as the > first > > > item in the listing of the current folder, rather than as part of the > > list > > > of shortcuts. > > > > > > * It seems to me that it would be useful to group the various distinct > > > parts of the page in <div> tags to aid with CSS formatting. > > > > > > ---------------------------------------------------------------------- > > > For information about J forums see http://www.jsoftware.com/forums.htm > > > > > ---------------------------------------------------------------------- > > For information about J forums see http://www.jsoftware.com/forums.htm > > > ---------------------------------------------------------------------- > For information about J forums see http://www.jsoftware.com/forums.htm > ---------------------------------------------------------------------- For information about J forums see http://www.jsoftware.com/forums.htm
