You're right. I'm infinitely more irritated at the mentality conveyed by Shaw's document, that "security" is a combination of using the most "advanced" crypto constructions and using parsing tools to avoid superficial overflows than I am at you for arguing with people about a post you didn't bother to read.

For that, I apologize.