Following Frédéric's mail. What do you suggest for securing PHP sites. I'd been using 'safe_mode = On' and /tmp with noexec,nosuid but would like to hear another experiences. Regards, maykel