Yes, we are aware of all these issues, but we've used this method for nearly five years, and we are not aware of any incidents where this have been exploited.
Anonymous