Is anyone else amazed at how poorly security has been implemented in PHP-nuke? It seems like an exploit comes through once a week for it. The developer has always been a nazi about the whole project, not letting other people's contributed code into it. I thought that when Mandrake decided to sponsor the project it would get better, but it appears that is not the case. If you're thinking about running PHP-nuke, don't. Just search the bugtraq archives at securityfocus.com to see why. Sad. Too bad, because it's a very nice php portal system, other than the fact that someone can gain access to your box any number of ways. Jay