Jan Schulz

Notes 8 and higher seems to listen to some ports. Unfortunatelly it seems that it listen to the wrong interface, as I get a firewall warning:


TCPView shows this:


So notes listen on all interfaces (0.0.0.0) instead of on an local one (which would show 127.0.0.1). To show another example, here is "hamster", a local mailserver, which does the right thing and binds only to the 127.0.0.1 interface and never showed up via such a firewall warning:

So two things:

• Why does Notes need to listen on all interfaces?
  If I guess right it is used to communicate between the 'oldstyle' nlnotes and the new eclipse user interface. If so: no need to bind to 0.0.0.0, 127.0.0.1 is enought. This could also mean that someone outside can use my nlnotes autenticated client to see the information?
  Or is notes expecting callbacks from the server? That would be something new for me and as calling nlnotes itself does not do this, so I suspect that this is not the case.
  => So I see no reason why notes couldn't bind to 127.0.0.1 only: less problems with security and no problems with the firewall...
  
• If notes needs to bind to that interface, the installer needs to drill a hole into the firewall, as *every* other windows ("server"-) programm, which needs to do that (this includes skype, bittorent thingies and so on...). I've normaly no admin rights on my laptop (hapy user of sudo fror windows) and our normal office users do not have that at all -> we had to add that to all clients -more or less- manually after installing the client :-(

So: did I miss something? If not: can someone at IBM please fix either the interface-binding or the installer? Thanks!