I would be inclined to lower the priority of this bug.
It seems that is only due to creating rules which rely on DNS, so it
seems more of a known issue territory than grave security issue.
Plus the poster hasn't replied in almost 2 months now, and the package
is currently not available in testing because of this.
Best
--
Salvo Tomaselli
"Io non mi sento obbligato a credere che lo stesso Dio che ci ha dotato di
senso, ragione ed intelletto intendesse che noi ne facessimo a meno."
-- Galileo Galilei
http://ltworf.github.io/ltworf/
