I just passed by this URI: http://www.winnetmag.com/Articles/Print.cfm?ArticleID=23918 and it talks about ways to harden the Win2K Registry against various "new" TCP/IP attacks. Gurus, are any of these worth applying to an ISA perimeter host, or do the various ISA Services do a good enough job? Gurus, are any of these worth applying to web or database or mail servers published behind/through the ISA box, or do ISA's server and web proxying features make them not worth it? For example, I was thinking that a particular attack at a web server would just be passed through by ISA to the published host, in which case the published host would need updates. Thanks.