Does any user really need 16 attempts to get their pw right? Seems kind of generous to hackers. I only allow 5. Anyway, the list of captured pw's scared me, so I'm setting "PermitRootLogin without-password" thnx -- rick baartman