Actually it sounds like the people involved in the discussion are aware of the changes that need to occur to address this. It also sounds like there are settings that node runners can tweak to mitigate the risk down to the point the attack seems still doable, but largely impractical.