Hi; It's easy. I learned it from the internet. First, create a log file for scanlogd under /var/log, say: /var/log/alert. Next, open /etc/syslog.conf and add this line: daemon.alert /var/log/alert. If your system doesn't have any security you can test it with nmap. Another easy way: You can track port-scans from /var/log/messages. That's it. -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/