Yeah, but, as I said, it's not all IE holes. I think XP SP2 closed a lot of the holes in the base OS, but there are bound to still be some there. And the state before SP2 was horrendous. I myself accidentally connected directly to the internet with XP SP1 via an analog modem and acquired a huge number of malwares within an hour without once using IE. That just smacks of total disregard of security in the initial design.