>> "KB" == Karsten Bolding <[EMAIL PROTECTED]> writes:
KB> And finally added www-data to shadow group KB> addgroup www-data shadow Be careful about this. Now everything running as www-data (webserver, maybe cgis) can read /etc/shadow. Even if noone can execute CGIs with the webserver uid or use dynamic content (SSI), it is still possible that a CGI has a security hole. So it is best to minimize the access www-data has. So you better look for another solution. Sorry, I can't help you more, but I don't run apache. Ciao, Martin