i'm about to leave for the weekend, but a quick heads up: http://www.securityfocus.com/archive/1/175060 after a quick read, it sounds like netscape can be coaxed into executing javascript contained in the gif's "comment" field. pete -- "The following addresses had permanent fatal errors..." [EMAIL PROTECTED] -- Mailer Daemon www.dirac.org/p
