Posting details of known UNIX security holes to the net is a *very* bad idea; I hope the reasons are obvious. This argument can be extended to e-mail: is it wise to e-mail security holes to someone you don't know? This is a general comment that is not" aimed" at any individual. tom gardner