I got a phish for paypal the other day. I laughed at the very obvious (to me) link when hovering over the link to log in and all... I thought.. "wow - it'd be fun to write a quick script to just POUND the page with random words for the POST information." Is that wrong of me? -Ben -- Fortune says: Ankh if you love Isis.