From what I have read,both Firehole and Too Leaky are based on the premise of first getting malware on the intended computer and then running said malware......although possibly a new angle,these seem to be not much different than any number of trojan programs out there.I'm not trivialising the problem,just saying that they are a new twist to an old problem.There's always another hole,there's always another piece of malware being written out there.......it all just enforces the importance of properly configured firewalls,up to date antivirus software,people needing to become more aware and better educated about what they may be downloading to their computers or where they surf(probably only wishful thinking on my part...oh,in a perfect world),and the need for some sort of public disclosure(whether it be full disclosure or partial) allowing softwaremakers to properly patch the problems,computer security people and network professionals to be aware there is a problem and try and defend themselves against said problem until a patch is hopefully made available.Again,I'm not saying this isn't an important issue......just the same old problem in a new wrapper,as I'm sure anyone out there involved with computer security for any length of time will agree.