I can't seem to lock down the remote agent in any way. It seems that it listens on port 5000 and accepts any connection from anyone, anyplace and will send them any file the user running the process can read.
Umm, that seems kind of bad to me.
Is there some way to lock it down by password? Yes, we can use iptables to lock down packets, but that's fairly ugly.