> Both George and Joe are right. It is a problem. Still, solving one and > leaving another untended just because one was used as the attack vector > is silly. Are we to forever leave problem unattended? Gadi, I'm unclear on what you are suggesting. What problem is left unattended with DNS if you cannot spoof UDP packets? Geo.