2013-08-28 23:08 GMT+02:00 Ethan Blanton <elb at pidgin.im>: > I mean we should deal with a fake server safely, as well. I'm not > sure I get the point you're making. It's been a while, I assume it is fixed by now. Shouldn't you/I/we request a cve for that? Lukas