Could someone please help me understand whats wrong with secconf with all these options: 1. Global Security Options 2. Device Password Configuration 3. Commands Logging and Access 4. User Security Options 5. List Current Security Configuration 6. Reset Security Configuration of which each breaks into further categories, for example the first one: GLOBAL SECURITY OPTIONS 0. Exit to Main Menu 1. Password Encryption 2. Minimum Length for Passwords 3. Maximum Invalid Logons per Device 4. Mandatory Password Prompt 5. Idle Session Timeout 6. Generic Logon Message Option 7. UDC Failure Termination Option 8. File Open Logging Option 9. Global Password Management Values 10. Batch Submission Security Options 11. Assurance of Auditability Option 12. File Maximum Protection Option 13. Maximum Invalid User Logons 14. Set all options to maximum protection Is it about that this doesn't come standard on FOS (at least I think that part if not all of it is a product that has to be purchaced)? Or are these options inadequate? I hear people saying about password encryption and so on -- well, to me it looks like its all there(?)... I guess I'm missing something -- could someone please clarify... :-) ..just curious... Eero - HP CSY Networking lab