Any idea how to remove tomcat from listening to port 8080? Or restrict access to port 8082 so that people can't shutdown my jboss?
yes if you want to block non localhost traffic just use a firewall local to the box
ipchains will work and is easy,
iptables will work well too (its stateful).
but all you really need is blocking incoming to the port
with ipchains (comes with linux) you can do this
-A input -s 127.0.0.1/8 -d 0/0 8080 -p tcp -j ACCEPT
-A input -s 0/0 -d 0/0 8080 -p tcp -j REJECT
this should work for you...