I read through that blog entry. Gave me a new appreciation forThe basic -Xdebug.... voodoo does not allow for password protection (as far as I know), and is not intended for production usage.
STRSRVJOB+STRDBG in the RPG world.
One thing that caught my eye which made me curious is how/where is the
desktop developer authenticated to the remote production WAS instance so he
is able to remote control it? Or equally important, how are people I DON'T
want controlling a remote production instance of WAS kept away if they know
both the server name and the port?