@Ruri going on manually. first check login then direct home or manual forwarding. but after a few wrong trial hit accounts fail. because it gives 406 first, then redirects to the homepage and fails. So it's impossible to fix it. Because the rope throws me. normally it gives 406 but later hit accounts also determine the bad result. sorry bad english
@Charles encryption on an open source client is not feasible mate, one could just add 1 line to dump the config to a file while it's unencrypted in memory and all my efforts would be futile ^_^ I hope you can understand this. If you want encryption you have to go for obfuscation on the client-side and a closed source.