A man in the middle attack was fixed due to the fact that mcabber doesn't verify the origin of rost er pushes thus allowing third parties to modify the roster.