Comment 3 for bug 904523

This could be my misunderstanding then... I thought there was an end-user-facing port (5000) and a service/operations port (35357). 35357 would be firewalled & on the "private" network, 5000 would be publicly exposed.

The services would use the private port, so nobody on the public internet can try password-guessing the "service" credentials.

Am I off base here?