News from the firewall newsgroup:

<Snip>

If one uses port 67 as the source port of a TCP or UDP scan, ZoneAlarm will let the packet through and will not notify the user. This means,that one can TCP or UDP port scan a ZoneAlarm protected computer as if there were no firewall there IF one uses port 67 as the source port on the packets.

<Snip>

Apparently the latest beta closes this loophole. The url is in one of my posts above. Suggest you download it!

[This message has been edited by MAX REVERSE (edited 26 April 2000).]