Guile security vulnerability w/ listening on localhost + port

Christopher Allan Webber looksat a security vulnerability in Guile. Guile applications are generallynot vulnerable, but arbitrary scheme code may by used to attack the systemsof Guile developers. "There is also a lesson here that appliesbeyond Guile: the presumption that "localhost" is only accessible by local users can't be guaranteedby modern operating system environments. If you are looking to providelocal-execution-only, we recommend using unix domain sockets or namedpipes. Don't rely on localhost plus some port."