About Security

Needless to say, everyone who has acces to port 1215 on your server can do anything that you can do by switches while you are in your house (and even more).
Do not, never, no, not allow access via internet to port 1215! Protect it with the firewall on your router.
Remember that sending a command to EIB does not need to establish a connection. An attacker can send falsified sender-ip and do any action in your installation if you only use iptables on your server and simply accept local ips. If you use iptables you have to filter the interface! If you don't and have a command to open your door, don't blame me!
Watch out who can modify your eibdef.xml! Anyone who can do this can make very, let's say, funny things with your EIB!
Be careful with your logs. Even the fact when doors and windows open (or do not for prolonged time) are most valuable for burglars!
If you want a remote access to your installation, do it via ssl-tunnels.
Never display any real-time data on any public accessable site! The fact that your heating is on standby right now is also most valuable!
Somecommand: some features like triggers or reminders include the execution of an external program. Normally this is what you want but it might also be a remote-(ssh-) connection to a server somewhere out in the world which could thus execute programs on your machine running in the context of rleibd.
Anyone who can place triggers or write to your eibdef.xml would be able to exploit this. It is therefore very important for you to set up a user who can only read configuration files and write logs and has no privileges other than absolutely needed under which you execute rleibd. Do not run rleibd with root privileges, at least if it is in any way accessable via internet!