Does our openvpn client have any known vulnerabilities?(let's assume the server is secure) Does HMAC auth apply to client as well as server? Can user/group nobody be set up on client side if server is not *NIX. Would chroot work client side only in the same scenario?

Is there any way to log keystrokes through a browser in N900?

Sandboxing Maemo's browsers?

Just some questions that I'd love to hear your opinion about.