Pop3 isn't the only thing with that problem. Stock rexec, for example, never logs anything and is another good way to hammer on password guesses from the outside. [See "rservice.c" to make this easier...] Several other daemons, particularly the vendor-supplied variety, are similarly lame. That's what tcp wrappers and logdaemon are for.. _H*