Comment 18 for bug 1204123

I think protection is a great idea, and just provide a --force option to bypass it. Or maybe do like git config and set the host vs localhost params just once and then forget them.