First of all, great software, I’ve been using it for some while now without any real issues.
I’ve dug into the documentation and underlying code that comprises Thinlinc, but I can’t seem to identify any configuration that relates to the listen address; by default Thinlinc (webaccess at least) listens on 0.0.0.0 and I’m wondering if there’s a way to configure it to listen on 127.0.0.1 so it makes reverse proxying (e.g., nginx) easier without a firewall.
No, it’s not possible to configure webaccess to bind to anything other than 0.0.0.0.
Thanks for replying to my question. I know it’s besides the scope of the question, but is there any technical reasoning for this? I know that instead of webaccess I can just use any of the deskop clients and have a thinlinc session via ssh which is quite secure, but I’m just curious since I really enjoy the HTML5 client.
The reasoning behind not having it configurable is that it introduces unnecessary complexity. From an administrative perspective, it’s best configured with firewall policies.