1. 12 Sep, 2012 2 commits
  2. 11 Sep, 2012 2 commits
  3. 07 Sep, 2012 2 commits
  4. 05 Sep, 2012 1 commit
  5. 02 Sep, 2012 6 commits
  6. 01 Sep, 2012 1 commit
  7. 31 Aug, 2012 5 commits
  8. 30 Aug, 2012 2 commits
  9. 29 Aug, 2012 11 commits
  10. 28 Aug, 2012 2 commits
  11. 27 Aug, 2012 2 commits
  12. 26 Aug, 2012 2 commits
  13. 24 Aug, 2012 2 commits
    • Dick Hollenbeck's avatar
    • Gregor Riepl's avatar
      The listener is opened on INADDR_ANY, so it will accept any network · 96771ccc
      Gregor Riepl authored
      connection, no matter if it is originating locally or from the outside
      of the host. There is no check in place to discard non-local
      connections. The only security against a malicious attack would be
      provided by a local firewall, which is not guaranteed to be installed on
      every workstation kicad is used on.
      
      I tested this, and a host running eeschema accepts connections on TCP
      port 4243 from other hosts on the internet.
      
      A patch to remedy this potentially serious security hole is attached. It
      creates the listener on localhost instead. A flag is provided to allow
      the creation of sockets on 0.0.0.0 instead, if required. localhost is
      the default.
      96771ccc