(mountain out of a molehill) Maybe, but one of the philosophies of Open Source code is that potential security vulnerablities are reviewed openly. For instance, what foleypro is proposing is something I didn't worry about (given prpcd runs on lo). However, his comments make me (and everyone) think more critically about the implications of using the software. (properly configured firewal) Yes. Additionally, prpcd.py firewalls again by only accepting connection from the local computers lo interface.