OK comrades, just read a most disburbing piece of info on the www: it concerns so-called firewall "stealth". Sorry if it's a newb question, but I bet someone will correct me if I'm wrong, right? So here goes: - firewalls in stealth mode drop ALL unsolicited packets, eg. TCP and UDP scans. - a TCP scan on a stealthed port will get no answer, exactly like a non-existent port, so the scanner will "think" that no one is behind the IP being probed. So far, so good. BUT: - a UDP scan on a stealthed port get no answer, exactly like an open port! (on a non-existent system, the scan will get a "non-reacheable" msg, or something like that) - so even though UDP is an unreliable protocol, the scanner will "know" that a system is PROBABLY behind the probed IP. => therefore, the stealthed system is revealed, and (especially) if the IP is static, then boom, sooner or later the hacker wins!