We’ll have to wait a developer’s answer but if you’re using a firewall simply doesn’t allow it server rights (incoming connections) and that’s enough to avoid any possible exploit I think.