Buck Posted April 25, 2013 Report Share Posted April 25, 2013 The linux client listens on the outside interface by default (0.0.0.0:8888) when it should default to to the loopback interface (127.0.0.1:8888). Yes, I know you can set it in the conf file, but will most users do this? Quote Link to comment Share on other sites More sharing options...
perennate Posted April 25, 2013 Report Share Posted April 25, 2013 There is an admin username and password required to authorize, that'd take a lot of tries to guess both strings correctly. Also I assume there's some antiflood to logins, but maybe not. Quote Link to comment Share on other sites More sharing options...
graphicsmagick Posted April 26, 2013 Report Share Posted April 26, 2013 I also agree that this is not a safe default set up. Some people may not have firewalled their linux macine.Also, I think the password should be stored in hash form in the JSON file for extra security. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.