Hi, I am a newbie to this list so I hope that I wont get flamed for this simple question. I have looked for a solution to my problem but none have been satisfactory. I have a cgi that is restricted to the cgi-bin folder in Webstar. What I recently noticed is that if someone types in our domain name, cgi-bin, and the cgi name, they are able to by-pass the security feature that I created via the cgi. Ex: Type: www.domainname.edu/cgi-bin/sec.cgi Result: cgi processes and creates the dynamic web page. In unix, I know that you can create a read only privledge. How do I replicate that feature? Thanks for your assistance, Tomer ==== Want to unsubscribe from this list? ==== Send mail with body "unsubscribe" to macperl-webcgi-request@macperl.org