By validation I mean having the GUI validate the input before it is processed. Not required, but a good idea.
I designed my server to be used through a LAN connection, using a LAN address for the codebase i.e. //host/ . I also have an apache web server running on NT and one on Linux. I decided to test my server by using a http://host/
codebase. Stub was dynamically downloaded in both cases. For some reason, the permissions in my security manager were not enough when using a http codebase - access was denied to the class loader. I had to include a policy file in my distribution incase Sun tested in both modes. SocketPermission for port 80 in the policy file took care of it, although that permission was already in my security manager. weird.