* David Howe sez: : As I understand it, the spoofing code is already available as a : drop-in DLL - ZPacket. winpcap has no problems installing itself, hiding itself and functioning properly without needing a reboot or keystrokes. Whoever is clueful enough to write a small trojan (and you don't need much clue for that), will know how to have that trojan fetch winpcap from the 'net and how to install it. If the dropin refuses to work without a reboot, the trojan could simulate a crash and force the luser to reboot - Windozies don't get suspicious if their machine hangs every once in a while. Gibson knows that - a lot of people told him. He just refuses to understand. He's simply a case of dangerously inflated ego combined with lack of basic clue and way too good in bullshitting his way around.