Hello you all, I think the debate is no different from the one about making Crack or COPS available to the public. The main argument for publicly available tools/information capable of discovering security holes is (as was argued before) that determined attackers will sooner or later get ride of these tools/information. So I think the argument also applies for a scenarios repository because attackers already have their own. I agree. Aziz- --------------------------+------------------------------------- | Abdelaziz Mounji | amo@info.fundp.ac.be | | ASAX project | http://www.info.fundp.ac.be/~amo | | Institut d'Informatique | voice: +32 81 724987 | | University of Namur | Fax : +32 81 724967 | ----------------------------------------------------------------