A question about VPNs then... is this defense only protecting against casual sniffing? If an attacker was 'l33t' couldn't they sniff whatever is used to establish the vpn at the start of the session to then decrypt that session or to start a new session with the same credentials? Maybe I'm not understanding something, but the shared