I think I'm going mad. Or at least madder than I previously was. I've been playing with plesk 7.5.3 on a test box (RedHat 9). One of the things I wanted to try was getting a tftp server running. To my surprise it worked "out of the box". And considering I had the Plesk firewall turned on, I found this amazing. Then I looked closely, and discovered that the default policy for anything not explicitly defined in the firewall is to ALLOW rather than DENY. This seems insane to me. Does everybody who uses the Plesk firewall normally swap the default rule over to DENY rather than ALLOW (which I discovered I could do with a single mouse click) or could I have done something daft at some point without realising it? Having said that, my two production boxes are also set to ALLOW rather than DENY. It doesn't matter because there's another firewall in front of them, and all non-essential services are switched off. But still, it really seems totally mad. Have I missed something? Faris.