Is the ENV hash sanitized and repopulated between the time the Perl*Auth handlers are run and the requested cgi is executed? I am setting an ENV key in one of my handlers that I'd like to use in a cgi that resides in a protected directory. Is it possible to retain that variable throughout the entire process, or will it always get wiped out? Example: I use my browser to call a cgi that is in a protected directory. In the PerlAuthenHandler, I set $ENV{'TEST_VAR'} = 1. I can pull the value of $ENV{'TEST_VAR'} in the PerlAuthzHandler, but when I try and fetch the value in the cgi that I called, the key 'TEST_VAR' does not exist. Thanks, Gene Dascher