Someone could write a script that attacks your ssb server, simply by running an ssb query over muxrpc directed at your public key -- this query will return your private messages.

I don't get it. This should only happen if you run noauth on an address that is dialable from the outside. Otherwise these methods shouldn't be exposed in the first place.