Ok, I committed a solution that will definitely work with NO class loader issues.
It uses static linking just like SLF4J. Now there should be no more arguments against this solution due to potential CL issues - they can't occur now. Please do an SVN update and look at JSecurityLogFactory again. I've tested this and works well.
