Dear List, asc> Dan Kaminsky gave a presentation at shmoocon and mentioned using asc> ip fragmentation timers to evade intrusion detection systems. Just FYI, for Risk Assesement, this information has already been presented last year by Dan at Defcon13 . -- http://secdev.zoller.lu Thierry Zoller Fingerprint : 5D84 BFDC CD36 A951 2C45 2E57 28B3 75DD 0AC6 F1C7