> But any user who can run scripts on the server as the apache user can > still read the files.. unless you only use php, and you try to prevent > it with safe mode or similar. Both php and apache cgi interface have tools to run scripts as unprivileged user -- http://scwlab.com