@fatboy meh, nothing they reported was particularly concerning. All of the attacks assumed a compromised home server, and if the home server is compromised, well, the home server is comprised :shrug:

@fatboy I'm wondering who's right here; the people that say the protocol itself is flawed, or the creator who think it's the initial clients' fault.