I'm planning to do a kind of database remote-control program with sockets. What kind of security considerations I should take into account? Or is there any sense doing that with sockets? In server-side the firewall shoud be configured to let the messages coming from the port serversockets listen to, and probably only those coming fro certain IP:s. Same things to do in the clien side I guess. I can't use tomcat, unfortunately, which would be the best solution. It sounds quite unsecure to send javaobjects through net, though not includen any critical information. What there is to do those secure, or is the whole ida implementing this kind of system in sockets, and what would be better alternative?