If I have hosts.deny set to all.paranoid and hosts.allow set like this: ALL: myid at myother.place.org All: 321.12.123.333 (fake IP address there) can attacks from outside get in to use ftp, ssh etc? I thought not, but Firestarter's kinda scaring me with what's coming in. Thanks for the help. Kathy