This is the point parent and the source article are making. Not whether or not it’s possible to be configured more securely.