Security design flaw: JAMS cannot be set to listen only at localhost

The JAMS executable takes only port and cert args, but I cannot specify the mask on which to listen.

That means if I want JAMS to be accessible only through Nginx, I need a special firewall rule. (This is a workaround I am going to use temprarily.)

It should be possible to specify adresses on which to listen, for example for any connection, for localhost only etc.

It would also be nice If it was possible to use UNIX socket instead of TCP/IP port.

1 Like