WRT the "Origin" field, I haven't seen discussion of a reasonable way to verify the origin. I mean, what prevents someone from spoofing the origin field? Sorry if this is obvious, -itai