Hi, The version of Sendmail in sarge is vulnerable to CVE-2006-1173 from what I can determine, and there's been a fixed version in testing for some time, but what's happened to stable? regards Andrew