Hell, thanks to websockets, any machine running a web browser behind the firewall is a potential vector for 'interesting' activity. Looks like a lot of work has gone into confining them to port 80, etc, but there are several vulnerable releases of popular browsers on multiple platforms. :-/ --tim