Have the test Evolt site(s) been upgraded to the latest version of Drupal? I've just had a Drupal site exploited on one of the servers I maintain because of this XML-RPC hole. Paul -- Rogue Tory http://www.roguetory.org.uk