Playing around as root (running "netstat -tap" specifically) I
discover that gnome apps are listening on several TCP ports.
Should I be worried? I like gnome, but I doubt the gnome apps have
received the kind of remote exploit/DOS hunt that sshd, ftpd, etc
have. And even if they're not running as root, I doubt it would take
long for someone having hacked my account to grab keystrokes as I
su'ed to root.