On Tuesday, July 12, 2011 2:28:10 AM UTC+2, pbreit wrote: > > From the code, it looks like admin is accessible via https *OR* localhost. > I had thought localhost was a requirement by default since otherwise it > seems too easy to break in to admin by just trying a bunch of passwords.
Is there a difference in security level between accessing admin over https compared to accessing admin over a localhost ssh tunnel?