Also, why is there no SSL setup for Teh. Can just use a self-signed certificate to get the TLS benefits, right?
Making myself look suspicious is half the point - the bigger the haystack that whistleblowers can hide in, the better chances of revealing the corruption and getting something done about it.