Default server password
Not really a bug but I think its important enough to be
treated as such.
Currently Doomsday is setup with a default net server
password. The problem is, I doubt anyone actually knows
to change it from the default before hosting a server
since this setting is "hidden" away in the console.
Obviously knowing the server password allows any remote
client to do a lot of funky stuff to the server and
kick other clients etc.
What I suggest is to make the server password appear
prominently in the server setup ui page and/or add a
random password gen mechanism to provide a bit of a
failsafe for unenlightened users.