> For exmaple, if we create a root-owned .htaccess file, then site admins > can't easily install their own.
They could still just make a directory below that one and put their .htaccess and malicious scripts in there.. Bryan _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
