Comment 10 for bug 1320056

OK, so this would be considered a missing security feature (weak security for internal communications). That needs to be fixed in future versions for sure. But we typically don't issue OSSA for those.