Package: apache Version: 1.0.3-1 This package includes the "phf" CGI script which means that on every system with this software anybody from outside can get a shell in about 3 seconds.. Advice: remove the "phf" binary from the package. Mike. -- Miquel van | Cistron Internet Services -- Alphen aan den Rijn. Smoorenburg, | mailto:info@cistron.nl http://www.cistron.nl/ miquels@het.net | Tel: +31-172-419445 (Voice) 430979 (Fax) 442580 (Data)