If you dial in to another NT system's Remote Access Service (RAS) from your NT 4 machine, the connection dialogue box offers you the option of saving your password. This is a convenience (because you don't have to type your password every time you dial in), but it may leave your PC vulnerable to unauthorised users. Alas, a bug in NT causes it to cache the password regardless of the setting you choose. Find the patch at ftp.microsoft.com/bussys/winnt/winnt-public/fixes/usa/nt40/Hotfixes-PostSP5 or download it from our cover CD.