Currently, Armory listens for interprocess connections on port 8223 on all interfaces. This is potentially dangerous, as this means that an attacker can trigger a payment dialog on the users screen from the network (or potentially the internet if the machine is not firewalled).
Example (where 192.168.1.6 is the remote IP of the computer running Armory):
Currently, Armory listens for interprocess connections on port 8223 on all interfaces. This is potentially dangerous, as this means that an attacker can trigger a payment dialog on the users screen from the network (or potentially the internet if the machine is not firewalled).
Example (where 192.168.1.6 is the remote IP of the computer running Armory):
This can be fixed by making armory listen only on the local interface with my commit.