-We need to do a security audit. At least remove all the unsafe function calls, even when they're
-marked with "secure" or "checked", and replace it with secure alternatives instead.
+- Stop making up names of global functions with mutt_*; give meaningful
+ names and declare them in the right headers to eventually obsolote
+ protos.h. This counts for data typedef's, too! Write one header and
+ one source file per datatype, do proper information hiding and thus
+ provide sane internal abstraction to get "future ready." For example,
+ for all the mailbox handling, the mbox_*/mmdf_* and mh_*/maildir_*
+ functions should only be called directly in the right abstraction
+ layer's implementation. And so forth.