On Mon, Jan 28, 2008 at 11:16:01AM +0100, Torsten Duwe wrote: > Without knowing exactly what you are trying to protect against ( I > know -- "the user" ) we cannot tell. What I think Torsten is getting at is that it would be beneficial to think about what user actions you want the system to be able to handle. //Peter