[tor-dev] Tor HS keys password protection against impersonation attacks?