Not a complete fix, but nevertheless a good defense in depth measure: https://nips.be/42

Basically, an authentication scheme so that relays wouldn't serve DM notes to anyone unless they can cryptographically prove that they're the intended recipient.