Hi, to Kurt:security and endusers do not fit well together. To keep a system somewhat secure you need to know your system, making updates as described by you will lead to more unsecure systems in the end as endusers will no longer call a technician but do it themselves without knowing whether or not their systes are secure anyway. In general there are different security needs, and allways updating a complete set of all known vulnerabities is defenitely a waste of bandwidth. Why update sendmail when using qmail, or wuftpd when using proftpd, .... What I wanted to see (I know that will be absolutely irrelevant for most) was an "I" od "X" flag to announcements, preferred in the subject, indicating an vulnerabity to attacks from internal or external source. (I do not care about vulnerabities from internal users, either for the lock of them or their lack of knowledge) mike