http://blogs.technet.com/accessdenied/archive/2006/02/27/420743.aspxI have posted a new article that discusses the benefits of providing pre-authentication to your web applications and how it can provide a significant layer of security against application layer attacks. http://blogs.technet.com/accessdenied/articles/420744.aspen-USCommunityServer 2.1 SP1 (Build: 61025.2)