SECURITY HOLE: the file descriptor for the secret key was left open and

inherited by the target process.  This is now fixed.  Also set
close-on-exec flags on key file, close config file carefully, and close
UDP socket after receiving reply from server.