I once turned on Contact Key Verification and thought it might be helpful. I've glanced at it sometimes, and it seemed alright.

But this vague warning is just a cardinal sin for a public key system. I guess I'll just turn it off and never turn it on again?